62ce646a9354e0d59abf50df6784e1b1f905d9b952ad028107882775f2cfe24f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e2be27d8557fd75860afa057e13978d_JaffaCakes118
Size

1.0MB
Sample

240712-vl1xlavbph
MD5

3e2be27d8557fd75860afa057e13978d
SHA1

8bcd6f539692e04de0f88f88931e5d44a15bbcf8
SHA256

62ce646a9354e0d59abf50df6784e1b1f905d9b952ad028107882775f2cfe24f
SHA512

bba910464147e924be834d5eb9046b0bfb203f413d85c477c5cbb2c7cbf809e9648dccacab25cb6798391b14bd2e12c84424049ab0a8f2c0f1122b165567e94b
SSDEEP

24576:LsSXtCK7/VosEFgaE8eW0NsrK908QARTl7Dm4fTX:QitCItojFgz8eW0nLQARTNKY

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  3e2be27d8557fd75860afa057e13978d_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  3e2be27d8557fd75860afa057e13978d
- SHA1
  
  8bcd6f539692e04de0f88f88931e5d44a15bbcf8
- SHA256
  
  62ce646a9354e0d59abf50df6784e1b1f905d9b952ad028107882775f2cfe24f
- SHA512
  
  bba910464147e924be834d5eb9046b0bfb203f413d85c477c5cbb2c7cbf809e9648dccacab25cb6798391b14bd2e12c84424049ab0a8f2c0f1122b165567e94b
- SSDEEP
  
  24576:LsSXtCK7/VosEFgaE8eW0NsrK908QARTl7Dm4fTX:QitCItojFgz8eW0nLQARTNKY
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2