9726ded4f6c531cb2426322abea6f9ae20a9dcd47b6caa1750083baa35c0a569 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e5a29d95099fc1680911db841b2fc87_JaffaCakes118
Size

326KB
Sample

240625-rd3vfaxckm
MD5

0e5a29d95099fc1680911db841b2fc87
SHA1

62d5dfa6215b275fd4e79687160274ddc6a760db
SHA256

9726ded4f6c531cb2426322abea6f9ae20a9dcd47b6caa1750083baa35c0a569
SHA512

793049c64d94a0ef4841fdb0cf0ad13d0a4b89e97b1b95e50ea6a943c5b0e9aaa99101b07ec0b971742aa90e9363b3caeaee3b45ba6eb0eb451020f6b5fcc405
SSDEEP

6144:Gnq4v69OavMU01GhSvoWSJSFG0u01L0N6yVeO9dJQ4QXgShhWjhi:zyJ91GS1vkJw0NuodhChw

Score

8^/10

evasion spyware stealer

Malware Config

Targets

- Target
  
  0e5a29d95099fc1680911db841b2fc87_JaffaCakes118
- Size
  
  326KB
- MD5
  
  0e5a29d95099fc1680911db841b2fc87
- SHA1
  
  62d5dfa6215b275fd4e79687160274ddc6a760db
- SHA256
  
  9726ded4f6c531cb2426322abea6f9ae20a9dcd47b6caa1750083baa35c0a569
- SHA512
  
  793049c64d94a0ef4841fdb0cf0ad13d0a4b89e97b1b95e50ea6a943c5b0e9aaa99101b07ec0b971742aa90e9363b3caeaee3b45ba6eb0eb451020f6b5fcc405
- SSDEEP
  
  6144:Gnq4v69OavMU01GhSvoWSJSFG0u01L0N6yVeO9dJQ4QXgShhWjhi:zyJ91GS1vkJw0NuodhChw
Score

8^/10

evasion spyware stealer
- Disables taskbar notifications via registry modification
  evasion
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealer

behavioral2