c05ef1bb48ed60294b498f40487da7bfafc714ad84b7bb4b450807c1cc122177 | Triage

Sharing

General

Target

04fd09e6cb17ae26eded0f77a18bf0d0_JaffaCakes118
Size

1.1MB
Sample

240620-l284gawblj
MD5

04fd09e6cb17ae26eded0f77a18bf0d0
SHA1

ed5048a019ab6adcc3a7431e737a2eca8c79ac9d
SHA256

c05ef1bb48ed60294b498f40487da7bfafc714ad84b7bb4b450807c1cc122177
SHA512

a0db1f13b7b15b51992172c35c204c3393831ffd9ba3d5f0fef56636353006633e80f549a3884b5c2c5aea8ece89a97adb7a404f0a943257c103523baf4e36cd
SSDEEP

24576:/JbQmG5n22sxhQ2qeKBRgwHFc73PGZPoHRJenZ70OsmEDYETdI8+GZ:Bun22s02qeKBRgwHFcrPGZAHzenCmE3D

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  04fd09e6cb17ae26eded0f77a18bf0d0_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  04fd09e6cb17ae26eded0f77a18bf0d0
- SHA1
  
  ed5048a019ab6adcc3a7431e737a2eca8c79ac9d
- SHA256
  
  c05ef1bb48ed60294b498f40487da7bfafc714ad84b7bb4b450807c1cc122177
- SHA512
  
  a0db1f13b7b15b51992172c35c204c3393831ffd9ba3d5f0fef56636353006633e80f549a3884b5c2c5aea8ece89a97adb7a404f0a943257c103523baf4e36cd
- SSDEEP
  
  24576:/JbQmG5n22sxhQ2qeKBRgwHFc73PGZPoHRJenZ70OsmEDYETdI8+GZ:Bun22s02qeKBRgwHFcrPGZAHzenCmE3D
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2