9d632cb30660ac3c0c7d43c27313cfc6bcfd9a01b8e86e902e502334f8f0b338 | Triage

Sharing

General

Target

30aec75b9a3def43a676f3938d11a983_JaffaCakes118
Size

1.1MB
Sample

240709-rdpyksxdqj
MD5

30aec75b9a3def43a676f3938d11a983
SHA1

ee12c7facff2c0dcbc70e3c43e889f1678cac3d4
SHA256

9d632cb30660ac3c0c7d43c27313cfc6bcfd9a01b8e86e902e502334f8f0b338
SHA512

a2ac4791999f6b05fc44861a55e6af0763a94cbed7380ecced6902fab57cfe9e6c75e6a3b6350b98d47eafd7bb358ca1fd3f55c4855a953c4cde7428be8b5539
SSDEEP

24576:ov3Pe6k1Bd/2XtmLdK50a6VccpbzVh9uATcVB9lq8fTOuo:ovFkNMt4dzwcJhoATcDDn9

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  30aec75b9a3def43a676f3938d11a983_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  30aec75b9a3def43a676f3938d11a983
- SHA1
  
  ee12c7facff2c0dcbc70e3c43e889f1678cac3d4
- SHA256
  
  9d632cb30660ac3c0c7d43c27313cfc6bcfd9a01b8e86e902e502334f8f0b338
- SHA512
  
  a2ac4791999f6b05fc44861a55e6af0763a94cbed7380ecced6902fab57cfe9e6c75e6a3b6350b98d47eafd7bb358ca1fd3f55c4855a953c4cde7428be8b5539
- SSDEEP
  
  24576:ov3Pe6k1Bd/2XtmLdK50a6VccpbzVh9uATcVB9lq8fTOuo:ovFkNMt4dzwcJhoATcDDn9
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2