07c0cf351a28814ed93a543dca445e546632098662fde18f6f68afc01c701f88 | Triage

Sharing

General

Target

23498625dd5ab980a1bdab03ea5a5e99_JaffaCakes118
Size

1.5MB
Sample

240703-wq3ses1enm
MD5

23498625dd5ab980a1bdab03ea5a5e99
SHA1

0b33bc691b661b2bd7e709179bdff38013f4a2be
SHA256

07c0cf351a28814ed93a543dca445e546632098662fde18f6f68afc01c701f88
SHA512

6994a5687f7e99376d387ce9266f61770409d65a90aa16429eecdf23607427f163ead3539e67a376539b1dbffc4ba3fa7b5db913d6dfac6bb9eb6cad46f4b3d3
SSDEEP

24576:ad69L3fKceEghBZB79B5pGcVncO6oE6pw4Yy4Pf0qiWKTYU8nadbPYzhryfJNTZC:fzfKm0ZB35pG4ncv1yW0qiWKTYU8ncgN

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  23498625dd5ab980a1bdab03ea5a5e99_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  23498625dd5ab980a1bdab03ea5a5e99
- SHA1
  
  0b33bc691b661b2bd7e709179bdff38013f4a2be
- SHA256
  
  07c0cf351a28814ed93a543dca445e546632098662fde18f6f68afc01c701f88
- SHA512
  
  6994a5687f7e99376d387ce9266f61770409d65a90aa16429eecdf23607427f163ead3539e67a376539b1dbffc4ba3fa7b5db913d6dfac6bb9eb6cad46f4b3d3
- SSDEEP
  
  24576:ad69L3fKceEghBZB79B5pGcVncO6oE6pw4Yy4Pf0qiWKTYU8nadbPYzhryfJNTZC:fzfKm0ZB35pG4ncv1yW0qiWKTYU8ncgN
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2