c4bf9b14ea9d389ba0840088f9985a1c0baeab1f862c0462062ef673634704e4 | Triage

Sharing

General

Target

18e88d54c15bd64337f54c6d9a0af9bc_JaffaCakes118
Size

1.1MB
Sample

240628-fxxa8ashnb
MD5

18e88d54c15bd64337f54c6d9a0af9bc
SHA1

0d942251cccd6f275a0d89fea211e7a0884eb864
SHA256

c4bf9b14ea9d389ba0840088f9985a1c0baeab1f862c0462062ef673634704e4
SHA512

bff470307ab01e7878924486134b84613448376980840a062c84dc4078b0ceae935422f33b45ea83933c27206c3eaa0c622c02695f442eb49e9de2d681d9d61e
SSDEEP

24576:i8hLvOhyHS5/pFu+lIHdDSa0pga7TclITAZHibsmadgu:iurO9ps+lI9DSa0pz7EITYDmad

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  18e88d54c15bd64337f54c6d9a0af9bc_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  18e88d54c15bd64337f54c6d9a0af9bc
- SHA1
  
  0d942251cccd6f275a0d89fea211e7a0884eb864
- SHA256
  
  c4bf9b14ea9d389ba0840088f9985a1c0baeab1f862c0462062ef673634704e4
- SHA512
  
  bff470307ab01e7878924486134b84613448376980840a062c84dc4078b0ceae935422f33b45ea83933c27206c3eaa0c622c02695f442eb49e9de2d681d9d61e
- SSDEEP
  
  24576:i8hLvOhyHS5/pFu+lIHdDSa0pga7TclITAZHibsmadgu:iurO9ps+lI9DSa0pz7EITYDmad
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2