af4e47d40512a977c5f29b6832b39ad5bb2b020d45210452997599ec379bde73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27ce97ff28837f8d18af5e5300b0b2b5_JaffaCakes118
Size

1.1MB
Sample

240706-jr41natfmf
MD5

27ce97ff28837f8d18af5e5300b0b2b5
SHA1

668c57d7e2652cf63286a90ff5d356b817590cb9
SHA256

af4e47d40512a977c5f29b6832b39ad5bb2b020d45210452997599ec379bde73
SHA512

c2f007da3eb9fd484667feaa929ce7511062bd74709966b8926827fa5da364519eeab66b1fbe93025d06f275a9e753b95e03fca323a8e8ea18e391d7601019ee
SSDEEP

12288:mWx4Gxllb2ArNkcSWcyRX0JO4q97HRslZ/gUrLST88coK5UKk47sR/++dggU:mwV25WcCWOn7xu/yT85VW/B/mgU

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  27ce97ff28837f8d18af5e5300b0b2b5_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  27ce97ff28837f8d18af5e5300b0b2b5
- SHA1
  
  668c57d7e2652cf63286a90ff5d356b817590cb9
- SHA256
  
  af4e47d40512a977c5f29b6832b39ad5bb2b020d45210452997599ec379bde73
- SHA512
  
  c2f007da3eb9fd484667feaa929ce7511062bd74709966b8926827fa5da364519eeab66b1fbe93025d06f275a9e753b95e03fca323a8e8ea18e391d7601019ee
- SSDEEP
  
  12288:mWx4Gxllb2ArNkcSWcyRX0JO4q97HRslZ/gUrLST88coK5UKk47sR/++dggU:mwV25WcCWOn7xu/yT85VW/B/mgU
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2