1930a2efe2ab477ad2e503766ae4fbf0b15fc1fe2b76316de1b9f32793715707 | Triage

Sharing

General

Target

17a8208667e746f100921b9d45c264c9_JaffaCakes118
Size

229KB
Sample

240627-1p1znavhjr
MD5

17a8208667e746f100921b9d45c264c9
SHA1

135a08bb0b340a170f426f623296c0fec969169e
SHA256

1930a2efe2ab477ad2e503766ae4fbf0b15fc1fe2b76316de1b9f32793715707
SHA512

2281b01c93f1823ffc5d578fff20b6a9e41bb4dd51f9bdba8620a7f0b1988305b0b74243fc2d0329ad1eaa28a590a2c6c304271731a688a520556e77d75293e5
SSDEEP

3072:ebHHjm3P7BkOWWLvmxJny8HxhC2bl1DsyOrExy:ebHjCkeLvH8pbl1Yy

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  17a8208667e746f100921b9d45c264c9_JaffaCakes118
- Size
  
  229KB
- MD5
  
  17a8208667e746f100921b9d45c264c9
- SHA1
  
  135a08bb0b340a170f426f623296c0fec969169e
- SHA256
  
  1930a2efe2ab477ad2e503766ae4fbf0b15fc1fe2b76316de1b9f32793715707
- SHA512
  
  2281b01c93f1823ffc5d578fff20b6a9e41bb4dd51f9bdba8620a7f0b1988305b0b74243fc2d0329ad1eaa28a590a2c6c304271731a688a520556e77d75293e5
- SSDEEP
  
  3072:ebHHjm3P7BkOWWLvmxJny8HxhC2bl1DsyOrExy:ebHjCkeLvH8pbl1Yy
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2