4c0971606e36618c169e5e9a74a28236275354e9c1ef76427e263188bee3caa5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24899532f88c3bc2883a284cd9f85e5b_JaffaCakes118
Size

1.0MB
Sample

240704-efhaasshrl
MD5

24899532f88c3bc2883a284cd9f85e5b
SHA1

50362c2a72044191a70a9abb234bdde8805052eb
SHA256

4c0971606e36618c169e5e9a74a28236275354e9c1ef76427e263188bee3caa5
SHA512

522cd182f8a275c99fe7b51843e61f8801169af179d447be8a181d27bade18e14387a10a94e3cb5b807dad09f800b766848274a4f464ea74b072d093a1658bca
SSDEEP

24576:psSXtCK7/VosCFgtcheW0Nsr6nk8QARTDGM85:CitCItoVFgaheW0l7QARTDGM8

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  24899532f88c3bc2883a284cd9f85e5b_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  24899532f88c3bc2883a284cd9f85e5b
- SHA1
  
  50362c2a72044191a70a9abb234bdde8805052eb
- SHA256
  
  4c0971606e36618c169e5e9a74a28236275354e9c1ef76427e263188bee3caa5
- SHA512
  
  522cd182f8a275c99fe7b51843e61f8801169af179d447be8a181d27bade18e14387a10a94e3cb5b807dad09f800b766848274a4f464ea74b072d093a1658bca
- SSDEEP
  
  24576:psSXtCK7/VosCFgtcheW0Nsr6nk8QARTDGM85:CitCItoVFgaheW0l7QARTDGM8
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2