f80c9ed3dfa475a1574e3c6c462828d677c99e2a12f57bf86007e8984108aea7 | Triage

Sharing

General

Target

088b4f8439bee37a1841ef165f99750a_JaffaCakes118
Size

1.1MB
Sample

240624-ps8ywsscqg
MD5

088b4f8439bee37a1841ef165f99750a
SHA1

3ae37bd9f7f815252ffe5fbb8007b804035960db
SHA256

f80c9ed3dfa475a1574e3c6c462828d677c99e2a12f57bf86007e8984108aea7
SHA512

8a87b1c963e513d0a4b9a0cc750865cbd893a4d76b995cf01ae8c7213099d31fcfa8f629070fa674e08455acf99a84556a92c8378c435b78bd58f3f407caef08
SSDEEP

24576:Y4oKmf5R/pOCuxGU13IlBwaa6NKHb/JBE6JuHMfMooE:Y4uv/pOCIGk3Ivwaa6IHz3E6JuHMfM

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  088b4f8439bee37a1841ef165f99750a_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  088b4f8439bee37a1841ef165f99750a
- SHA1
  
  3ae37bd9f7f815252ffe5fbb8007b804035960db
- SHA256
  
  f80c9ed3dfa475a1574e3c6c462828d677c99e2a12f57bf86007e8984108aea7
- SHA512
  
  8a87b1c963e513d0a4b9a0cc750865cbd893a4d76b995cf01ae8c7213099d31fcfa8f629070fa674e08455acf99a84556a92c8378c435b78bd58f3f407caef08
- SSDEEP
  
  24576:Y4oKmf5R/pOCuxGU13IlBwaa6NKHb/JBE6JuHMfMooE:Y4uv/pOCIGk3Ivwaa6IHz3E6JuHMfM
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2