Overview

overview

10

Static

static

3

628b2d0f72...18.exe

windows7-x64

10

628b2d0f72...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    628b2d0f7299823cef55d6a6e899463a_JaffaCakes118

  • Size

    116KB

  • Sample

    240722-kkvn3sxhqg

  • MD5

    628b2d0f7299823cef55d6a6e899463a

  • SHA1

    3583f0431e75e099d3ee09267c2c517463340f46

  • SHA256

    fd610a67acaf861042d0b5acdb98ca2b209a368ada2413458106f023af19b2fd

  • SHA512

    db3909c42d9c13b9847faa49d8c6bf84d3d1a4d8e8a5e937c0b7722488c4e9c6a774fe58a53cf1db20c18910dff47018a3e28f4ddeee1c511d60eb59ab7b6ec1

  • SSDEEP

    1536:Y+cpVXC8ivaf0yN2Li6IY3Lpylo9NujMSx+HzSUmIkI1LN5g6Z:NAB40ai6bKgSx+TSBIT1jPZ

Score
10/10
spywarestealer

Malware Config

Extracted

Credentials

  • Protocol:     ftp
  • Host:
    www12.subdomain.com
  • Port:
    21
  • Username:
    user1477190
  • Password:
    agustin123

Targets

    • Target

      628b2d0f7299823cef55d6a6e899463a_JaffaCakes118

    • Size

      116KB

    • MD5

      628b2d0f7299823cef55d6a6e899463a

    • SHA1

      3583f0431e75e099d3ee09267c2c517463340f46

    • SHA256

      fd610a67acaf861042d0b5acdb98ca2b209a368ada2413458106f023af19b2fd

    • SHA512

      db3909c42d9c13b9847faa49d8c6bf84d3d1a4d8e8a5e937c0b7722488c4e9c6a774fe58a53cf1db20c18910dff47018a3e28f4ddeee1c511d60eb59ab7b6ec1

    • SSDEEP

      1536:Y+cpVXC8ivaf0yN2Li6IY3Lpylo9NujMSx+HzSUmIkI1LN5g6Z:NAB40ai6bKgSx+TSBIT1jPZ

    Score
    10/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks