5e5ac86cf4c0d8184fa680d5538df7954c56e8b122d55234ee9541297e2b4b61 | Triage

Sharing

General

Target

3531a64cd2749bc4aadc655149ad0a1b_JaffaCakes118
Size

1.1MB
Sample

240710-r9353stgkl
MD5

3531a64cd2749bc4aadc655149ad0a1b
SHA1

587a607efecfc41b0fb548e09cc08303651b1045
SHA256

5e5ac86cf4c0d8184fa680d5538df7954c56e8b122d55234ee9541297e2b4b61
SHA512

67d838206c5cfe4bba5a425b11abf1384248e4f1cd0b20f723a4bc15e7dbf0e590128db8fdbf9b3be60d7a2c5de4ee3847ac645bbeb18b1c7499a906fda0b3d6
SSDEEP

24576:r4oKmf5R/pOCuxGU13IlBwaa6NKHb/JnsyytsE:r4uv/pOCIGk3Ivwaa6IHz1sds

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  3531a64cd2749bc4aadc655149ad0a1b_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  3531a64cd2749bc4aadc655149ad0a1b
- SHA1
  
  587a607efecfc41b0fb548e09cc08303651b1045
- SHA256
  
  5e5ac86cf4c0d8184fa680d5538df7954c56e8b122d55234ee9541297e2b4b61
- SHA512
  
  67d838206c5cfe4bba5a425b11abf1384248e4f1cd0b20f723a4bc15e7dbf0e590128db8fdbf9b3be60d7a2c5de4ee3847ac645bbeb18b1c7499a906fda0b3d6
- SSDEEP
  
  24576:r4oKmf5R/pOCuxGU13IlBwaa6NKHb/JnsyytsE:r4uv/pOCIGk3Ivwaa6IHz1sds
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2