e7ec45bdb7abbfd1fb42ac39fbd188e196258ce9880cc81fb819d3bd2ec97c03 | Triage

Sharing

General

Target

634e5cf968d47b3501ab84a64d0beea5_JaffaCakes118
Size

173KB
Sample

240722-qfxwjayenf
MD5

634e5cf968d47b3501ab84a64d0beea5
SHA1

91fd1b2a56dedb2ca96641522923c3455218672c
SHA256

e7ec45bdb7abbfd1fb42ac39fbd188e196258ce9880cc81fb819d3bd2ec97c03
SHA512

5704a67959a0680cdce2d73a1451f8fae427a3f3a836e26ee2632ea2b3a52ac82798da9df9a5e198f3f242b61fca0f962dc2dd252bbf228e9f78ef33ede60a06
SSDEEP

3072:v7z7MLcHVmoGY5koSJ6neuk0ULQCyEep4NcWaflc18DrQo84FlSj1Hm4NGHmA34f:vz8WiQkoNegBCyEescWS48DkBW4HHJf

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  s.exe
- Size
  
  200KB
- MD5
  
  e11690263214392e4312c453c6660127
- SHA1
  
  1c9910f6b172a28c76d1f34886089491202fe006
- SHA256
  
  d02e9a1bef81b9bd55725ea4dd567814f141299faed4e64b63eb890d8452dfe2
- SHA512
  
  53c8b97442c25d2d0b80f2616b4980566ebcb4d91f935c8e316a3abcc5e87d87b0959365a7053994ea2fd5280a466c3c7fbcdb5e4595d9552c7c4544d5bbd91d
- SSDEEP
  
  3072:uZ5EnHi7Qn3s5VJg53DKeU9TeswPnltsOL2B/XQRMIV6aKAxV4g4Fu:bl34Eji63Pl1L2BARHlKATwFu
Score

7^/10

spyware stealer
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2