43db2cbad1c51b724d4ef063820b10ef0375eab0835041511422e79287ccc5fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29ac2cd74fbbd572b94da49997af3787_JaffaCakes118
Size

209KB
Sample

240707-cv7gmatdjb
MD5

29ac2cd74fbbd572b94da49997af3787
SHA1

420a96b677a89e1edf7e3e33fa0c2207a100574a
SHA256

43db2cbad1c51b724d4ef063820b10ef0375eab0835041511422e79287ccc5fa
SHA512

c0388195ba7502bb43aac5d7a206763d41f1e9cb4b781a433f326d26c295875e787f6dc52e4a070644b4756d47d3f9f20b6f3e4750e89b6d9bec5e14cfb2445a
SSDEEP

6144:ltpKihsAj3FinywCMqi2JPUsnIlCuXhHdgZw20F:FK/Aj1ieMqi2JPUkIlNXhHP9

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  29ac2cd74fbbd572b94da49997af3787_JaffaCakes118
- Size
  
  209KB
- MD5
  
  29ac2cd74fbbd572b94da49997af3787
- SHA1
  
  420a96b677a89e1edf7e3e33fa0c2207a100574a
- SHA256
  
  43db2cbad1c51b724d4ef063820b10ef0375eab0835041511422e79287ccc5fa
- SHA512
  
  c0388195ba7502bb43aac5d7a206763d41f1e9cb4b781a433f326d26c295875e787f6dc52e4a070644b4756d47d3f9f20b6f3e4750e89b6d9bec5e14cfb2445a
- SSDEEP
  
  6144:ltpKihsAj3FinywCMqi2JPUsnIlCuXhHdgZw20F:FK/Aj1ieMqi2JPUkIlNXhHP9
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2