7993d9586426270f9fc7e363f921bc190fed64954d823d567e91b698707b5de0 | Triage

Sharing

General

Target

21ba634b03020523cab6131dc6b23a05_JaffaCakes118
Size

1.1MB
Sample

240703-kjkgqavdmg
MD5

21ba634b03020523cab6131dc6b23a05
SHA1

367420d7a1e01e849f5ab6e0accd293a4e9895ba
SHA256

7993d9586426270f9fc7e363f921bc190fed64954d823d567e91b698707b5de0
SHA512

51f5744a6a61f0efc27d22a857beb5c3b3d3318dabd992888f93840ce90f1246915c44501bbca4f38f90631a83e9e061098488c63535ca3220c1129dff7bc3ba
SSDEEP

12288:P8V4985mqDmfCR2ip0xAsrNSB7TKx5aP14TMCG1buLST9NKwiUmgJYGv:kOqDF2RxA2Sox5unhT98EeGv

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  21ba634b03020523cab6131dc6b23a05_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  21ba634b03020523cab6131dc6b23a05
- SHA1
  
  367420d7a1e01e849f5ab6e0accd293a4e9895ba
- SHA256
  
  7993d9586426270f9fc7e363f921bc190fed64954d823d567e91b698707b5de0
- SHA512
  
  51f5744a6a61f0efc27d22a857beb5c3b3d3318dabd992888f93840ce90f1246915c44501bbca4f38f90631a83e9e061098488c63535ca3220c1129dff7bc3ba
- SSDEEP
  
  12288:P8V4985mqDmfCR2ip0xAsrNSB7TKx5aP14TMCG1buLST9NKwiUmgJYGv:kOqDF2RxA2Sox5unhT98EeGv
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2