d6b3a02cae8eec861b2c45d8bfd1ebf3176c7012ec345cd12fb8b853976e14d1 | Triage

Sharing

General

Target

3887236c30b41b34ad13b83fd3579e26_JaffaCakes118
Size

1.5MB
Sample

240711-k8jlqazdkk
MD5

3887236c30b41b34ad13b83fd3579e26
SHA1

8237b020a8c37ad9b3a7c339f2dabe9b329a8fd4
SHA256

d6b3a02cae8eec861b2c45d8bfd1ebf3176c7012ec345cd12fb8b853976e14d1
SHA512

da6a9bb31d584e9ec24f37afc424b96b3877f54ce07f9cb91302cff2aa042dae935d7e57e8060124d4daccf3ebc5dd85cbce3f1b014b5e2485fafdfcaef1c626
SSDEEP

24576:wdVFrJflRsFEjPZRzVQAOP650KO+G3nH4lAClKYI3R0OmzUlWdmAqo+VqflNTPAh:KNflYMZRWAOPy0K4MA7YI3R0OmzUlV3V

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  3887236c30b41b34ad13b83fd3579e26_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  3887236c30b41b34ad13b83fd3579e26
- SHA1
  
  8237b020a8c37ad9b3a7c339f2dabe9b329a8fd4
- SHA256
  
  d6b3a02cae8eec861b2c45d8bfd1ebf3176c7012ec345cd12fb8b853976e14d1
- SHA512
  
  da6a9bb31d584e9ec24f37afc424b96b3877f54ce07f9cb91302cff2aa042dae935d7e57e8060124d4daccf3ebc5dd85cbce3f1b014b5e2485fafdfcaef1c626
- SSDEEP
  
  24576:wdVFrJflRsFEjPZRzVQAOP650KO+G3nH4lAClKYI3R0OmzUlWdmAqo+VqflNTPAh:KNflYMZRWAOPy0K4MA7YI3R0OmzUlV3V
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2