15b2d6d5445c1d2d5ce8f227f4fea12bfc76bd6c7eff94b2ec21b45e9bc82e99 | Triage

Sharing

General

Target

615c05ccabb663ea0122ec56545d6ba5_JaffaCakes118
Size

1.0MB
Sample

240721-zpv8qsthla
MD5

615c05ccabb663ea0122ec56545d6ba5
SHA1

c2d7bf9fc5544a0c766910acb7f0fdc21a6f20dc
SHA256

15b2d6d5445c1d2d5ce8f227f4fea12bfc76bd6c7eff94b2ec21b45e9bc82e99
SHA512

0fc86fc7a0c35a0689ee6e417fdffa4c73c820696ace64a9d4e8369b104a00c41e7e19031b10d0d60e8f880fd9a229bcc596308231882dc8269034ceab2df53d
SSDEEP

24576:hsSXtCK7/VoseFggLceW0Nsr1EQ8QARTFhDkwXyHgQ:qitCItolFgqceW0B/QARTjrXl

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  615c05ccabb663ea0122ec56545d6ba5_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  615c05ccabb663ea0122ec56545d6ba5
- SHA1
  
  c2d7bf9fc5544a0c766910acb7f0fdc21a6f20dc
- SHA256
  
  15b2d6d5445c1d2d5ce8f227f4fea12bfc76bd6c7eff94b2ec21b45e9bc82e99
- SHA512
  
  0fc86fc7a0c35a0689ee6e417fdffa4c73c820696ace64a9d4e8369b104a00c41e7e19031b10d0d60e8f880fd9a229bcc596308231882dc8269034ceab2df53d
- SSDEEP
  
  24576:hsSXtCK7/VoseFggLceW0Nsr1EQ8QARTFhDkwXyHgQ:qitCItolFgqceW0B/QARTjrXl
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2