d9663c4faee0068d9bcb48a5ce3958f6d7d2e2b1a7b7420499f16ab7f426d335 | Triage

Sharing

General

Target

33a3e090222efe199a4b935b5ec7aacb_JaffaCakes118
Size

581KB
Sample

240710-g6pheatemg
MD5

33a3e090222efe199a4b935b5ec7aacb
SHA1

3c17d94bb112b3b0fc442d98dbc58f9187e196fb
SHA256

d9663c4faee0068d9bcb48a5ce3958f6d7d2e2b1a7b7420499f16ab7f426d335
SHA512

f9f9c95f28380c636b3054974133fdda8c93ca9d12d64904ff241956bf3a455bb371d170db2c3f0cadf8e13d436c63f1778f2dabeec75675f62586dc1f1e0a22
SSDEEP

12288:9ZCSUTHfLyLQ9JcjoNY7dLY6zRcomopH61dNm3Dae/JwbF0okkGjPe:9ZCSCMcJ9wYHomommz5W0oJGjPe

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  33a3e090222efe199a4b935b5ec7aacb_JaffaCakes118
- Size
  
  581KB
- MD5
  
  33a3e090222efe199a4b935b5ec7aacb
- SHA1
  
  3c17d94bb112b3b0fc442d98dbc58f9187e196fb
- SHA256
  
  d9663c4faee0068d9bcb48a5ce3958f6d7d2e2b1a7b7420499f16ab7f426d335
- SHA512
  
  f9f9c95f28380c636b3054974133fdda8c93ca9d12d64904ff241956bf3a455bb371d170db2c3f0cadf8e13d436c63f1778f2dabeec75675f62586dc1f1e0a22
- SSDEEP
  
  12288:9ZCSUTHfLyLQ9JcjoNY7dLY6zRcomopH61dNm3Dae/JwbF0okkGjPe:9ZCSCMcJ9wYHomommz5W0oJGjPe
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2