927af74f7d466d6b98cf4e63787c07ef0daa65484de433177de757965ebc6773 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a28cfd26e676071c22f593786e5fb7b_JaffaCakes118
Size

583KB
Sample

240719-c989rsyhkl
MD5

5a28cfd26e676071c22f593786e5fb7b
SHA1

b16cc3a9190f282d2476123de8c2e9b5798f1297
SHA256

927af74f7d466d6b98cf4e63787c07ef0daa65484de433177de757965ebc6773
SHA512

793fcb3e4f9afb3f436fa99d574f5b3b02d3f70050c770aac913efc659ed6f0fbd3bd11e1c4a107b0ba51e7c3a2c37b7e8dff133192c7f09c4b89bd62331137f
SSDEEP

12288:VGeA6o5Pmll5uMVkLNsc50Le7iXizHeFqhb9H:VWRmlP9VWD2e7iRqhb

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  5a28cfd26e676071c22f593786e5fb7b_JaffaCakes118
- Size
  
  583KB
- MD5
  
  5a28cfd26e676071c22f593786e5fb7b
- SHA1
  
  b16cc3a9190f282d2476123de8c2e9b5798f1297
- SHA256
  
  927af74f7d466d6b98cf4e63787c07ef0daa65484de433177de757965ebc6773
- SHA512
  
  793fcb3e4f9afb3f436fa99d574f5b3b02d3f70050c770aac913efc659ed6f0fbd3bd11e1c4a107b0ba51e7c3a2c37b7e8dff133192c7f09c4b89bd62331137f
- SSDEEP
  
  12288:VGeA6o5Pmll5uMVkLNsc50Le7iXizHeFqhb9H:VWRmlP9VWD2e7iRqhb
Score

7^/10

spyware stealer
- Reads user/profile data of local email clients
  Email clients store some user data on disk where infostealers will often target it.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2