208e6ba1b1aa7a806bc96528ceb91542c67349c1efe41792f691dcbc5018292b | Triage

Sharing

General

Target

0ee0d7ac45db5e3dfda9357429cc4b5f_JaffaCakes118
Size

2.6MB
Sample

240502-svcj9abh21
MD5

0ee0d7ac45db5e3dfda9357429cc4b5f
SHA1

24ce441f2f05c7fc6a19d426cba36b7548a1f1a9
SHA256

208e6ba1b1aa7a806bc96528ceb91542c67349c1efe41792f691dcbc5018292b
SHA512

f2756dbc1666e176afd1da661fdd836948325456e5e09bc8b86d76fe8dd75673ac8cb1d331843062971be85c9a72a02bef9beb666b004bb84aa3e48c95eace15
SSDEEP

49152:+oW0CDMJuAVExFzLRkUXIR6jkulajNvBuT8wUK4z5ZzpXVLo+9sKZSKW0:+mJrWxlNAkjkuIjNvBE49b6IP1W0

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  0ee0d7ac45db5e3dfda9357429cc4b5f_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  0ee0d7ac45db5e3dfda9357429cc4b5f
- SHA1
  
  24ce441f2f05c7fc6a19d426cba36b7548a1f1a9
- SHA256
  
  208e6ba1b1aa7a806bc96528ceb91542c67349c1efe41792f691dcbc5018292b
- SHA512
  
  f2756dbc1666e176afd1da661fdd836948325456e5e09bc8b86d76fe8dd75673ac8cb1d331843062971be85c9a72a02bef9beb666b004bb84aa3e48c95eace15
- SSDEEP
  
  49152:+oW0CDMJuAVExFzLRkUXIR6jkulajNvBuT8wUK4z5ZzpXVLo+9sKZSKW0:+mJrWxlNAkjkuIjNvBE49b6IP1W0
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer