1820690e43834356861a7f2061d6377f80efeee2d17fee377be663852ab3eb27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b4ac6d1a323b4107d24ef3f16e86695_JaffaCakes118
Size

1.1MB
Sample

240712-amck6s1bnr
MD5

3b4ac6d1a323b4107d24ef3f16e86695
SHA1

bfa7bc2c5ee35bb01338755695c5b9734f541d28
SHA256

1820690e43834356861a7f2061d6377f80efeee2d17fee377be663852ab3eb27
SHA512

04f21a6423baf5864f467664c91229b83c52d5ac8b3ecf17a2605884f412f8b5f5b86d80960c8874350c7d3c367f2e84dce206bbb9e7de1b2de3ea92bd97d208
SSDEEP

24576:bQJSP96tATSZst9gI2phBG3wRcrW0vi2+Y8+aj6I2Mljb/pjdD4TjaX6UnDPAKl5:bQIPEtA4sH+hBCVieQJp4T2TnT

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  3b4ac6d1a323b4107d24ef3f16e86695_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  3b4ac6d1a323b4107d24ef3f16e86695
- SHA1
  
  bfa7bc2c5ee35bb01338755695c5b9734f541d28
- SHA256
  
  1820690e43834356861a7f2061d6377f80efeee2d17fee377be663852ab3eb27
- SHA512
  
  04f21a6423baf5864f467664c91229b83c52d5ac8b3ecf17a2605884f412f8b5f5b86d80960c8874350c7d3c367f2e84dce206bbb9e7de1b2de3ea92bd97d208
- SSDEEP
  
  24576:bQJSP96tATSZst9gI2phBG3wRcrW0vi2+Y8+aj6I2Mljb/pjdD4TjaX6UnDPAKl5:bQIPEtA4sH+hBCVieQJp4T2TnT
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2