de48ab283b57af2c9a994d6ac656f0c832bc51274d6248e00bb69b71f4ffa7b9 | Triage

Sharing

General

Target

221727795b76e99109d67f696f0d4a24_JaffaCakes118
Size

1.1MB
Sample

240703-mwjgasshlm
MD5

221727795b76e99109d67f696f0d4a24
SHA1

b82940298cb6477bd639c369e2c377c03521704a
SHA256

de48ab283b57af2c9a994d6ac656f0c832bc51274d6248e00bb69b71f4ffa7b9
SHA512

a732f4d741417c7a93e48d5bbee9e1ce23581a5f76e95f147ec826fea969e11aafb00fcf47cf360022e5884e49da9eacce39cc3c8b13f4ba8088f499148ebafd
SSDEEP

24576:M4oKmf5R/pOCuxGU13IlBwaa6NKHb/JX0erOoqfD:M4uv/pOCIGk3Ivwaa6IHz10poY

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  221727795b76e99109d67f696f0d4a24_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  221727795b76e99109d67f696f0d4a24
- SHA1
  
  b82940298cb6477bd639c369e2c377c03521704a
- SHA256
  
  de48ab283b57af2c9a994d6ac656f0c832bc51274d6248e00bb69b71f4ffa7b9
- SHA512
  
  a732f4d741417c7a93e48d5bbee9e1ce23581a5f76e95f147ec826fea969e11aafb00fcf47cf360022e5884e49da9eacce39cc3c8b13f4ba8088f499148ebafd
- SSDEEP
  
  24576:M4oKmf5R/pOCuxGU13IlBwaa6NKHb/JX0erOoqfD:M4uv/pOCIGk3Ivwaa6IHz10poY
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2