9636cffc47d0d095b634dece8f05c1ce6f2894ca7efaa77616e8e90046034c09 | Triage

Sharing

General

Target

23f3951f34ebb93756ad7e6564f816a0_JaffaCakes118
Size

1.1MB
Sample

240704-aearlsvfkb
MD5

23f3951f34ebb93756ad7e6564f816a0
SHA1

3f6deb5a83ea8752abdab2a32c9df8b0fa52b544
SHA256

9636cffc47d0d095b634dece8f05c1ce6f2894ca7efaa77616e8e90046034c09
SHA512

f54421ec822ec0a16efd76c3ce4de1f1bb8b0fc91985bad509b793d077f14eea8492908f84935af2c5db47537a37cbb7863b6510d49f6f11f1e2ba16078d8a10
SSDEEP

24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  23f3951f34ebb93756ad7e6564f816a0_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  23f3951f34ebb93756ad7e6564f816a0
- SHA1
  
  3f6deb5a83ea8752abdab2a32c9df8b0fa52b544
- SHA256
  
  9636cffc47d0d095b634dece8f05c1ce6f2894ca7efaa77616e8e90046034c09
- SHA512
  
  f54421ec822ec0a16efd76c3ce4de1f1bb8b0fc91985bad509b793d077f14eea8492908f84935af2c5db47537a37cbb7863b6510d49f6f11f1e2ba16078d8a10
- SSDEEP
  
  24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2