3cdfb19b34271a2b313f062c6f616291a9d8c4b29ea5029aa2ff714f15b588fc | Triage

Sharing

General

Target

06b704fa4f6531430651f8d906cc94b4_JaffaCakes118
Size

27.3MB
Sample

240429-dx89nsha4y
MD5

06b704fa4f6531430651f8d906cc94b4
SHA1

ab67b94dff9382f6ecf72a76be0a3bf2f8d0ba01
SHA256

3cdfb19b34271a2b313f062c6f616291a9d8c4b29ea5029aa2ff714f15b588fc
SHA512

bd0ea2cf570f17a61dd784587eb9b6ee91f7bf9e7e49d065ea25d3c3d02a4421cbaa5890358535741d5d968be6aa9dc44dded5133a60716960f6639a1f4fff5c
SSDEEP

49152:XYgph7GBfW5/4MnYYJ2ZhqSGLHkJEMSHuOF7to4SL4LLsa:XX77GBfWmIDQXOY4mod

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  06b704fa4f6531430651f8d906cc94b4_JaffaCakes118
- Size
  
  27.3MB
- MD5
  
  06b704fa4f6531430651f8d906cc94b4
- SHA1
  
  ab67b94dff9382f6ecf72a76be0a3bf2f8d0ba01
- SHA256
  
  3cdfb19b34271a2b313f062c6f616291a9d8c4b29ea5029aa2ff714f15b588fc
- SHA512
  
  bd0ea2cf570f17a61dd784587eb9b6ee91f7bf9e7e49d065ea25d3c3d02a4421cbaa5890358535741d5d968be6aa9dc44dded5133a60716960f6639a1f4fff5c
- SSDEEP
  
  49152:XYgph7GBfW5/4MnYYJ2ZhqSGLHkJEMSHuOF7to4SL4LLsa:XX77GBfWmIDQXOY4mod
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2