22c23853f493dd0bd627cb09c1cfef3f0858773fa3c49678a7291af6ae13dc56 | Triage

Sharing

General

Target

78479a2b8719d74f45a9a3526e2c07d5_JaffaCakes118
Size

1.0MB
Sample

240527-hs6efacf93
MD5

78479a2b8719d74f45a9a3526e2c07d5
SHA1

eb8bb39490dc3a6058f145a524bbff3f7f1dad0b
SHA256

22c23853f493dd0bd627cb09c1cfef3f0858773fa3c49678a7291af6ae13dc56
SHA512

d20b6837c7d76e3456f297fab52c63cf7fb94a9355f3b8015bcd9d2c161b22eaa20883b68f4dca734d7fb968840307c4e52e3e16a7bf21ebf117bef8afdc8e08
SSDEEP

24576:I5zsezvLMJC+eGekJexWkm8JIDqVraNiAgi4CICr83G9ERT/49:yrkvtex9m8J2qVraNJgi4CICrWG9ERTq

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  78479a2b8719d74f45a9a3526e2c07d5_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  78479a2b8719d74f45a9a3526e2c07d5
- SHA1
  
  eb8bb39490dc3a6058f145a524bbff3f7f1dad0b
- SHA256
  
  22c23853f493dd0bd627cb09c1cfef3f0858773fa3c49678a7291af6ae13dc56
- SHA512
  
  d20b6837c7d76e3456f297fab52c63cf7fb94a9355f3b8015bcd9d2c161b22eaa20883b68f4dca734d7fb968840307c4e52e3e16a7bf21ebf117bef8afdc8e08
- SSDEEP
  
  24576:I5zsezvLMJC+eGekJexWkm8JIDqVraNiAgi4CICr83G9ERT/49:yrkvtex9m8J2qVraNJgi4CICrWG9ERTq
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2