64880bd6b8eb658f15fa0c5b07aaa15643f5b89ba3b7005615a046826a8bd2e9 | Triage

Sharing

General

Target

6631b1e738528b27d58be094dc4fe271_JaffaCakes118
Size

296KB
Sample

240723-fej8yayfkl
MD5

6631b1e738528b27d58be094dc4fe271
SHA1

a0e625253acf317bf3f824015d29ce6a231c083d
SHA256

64880bd6b8eb658f15fa0c5b07aaa15643f5b89ba3b7005615a046826a8bd2e9
SHA512

7a0aed61d9e69963c9f1261261c8a74e1b174390a68b1ab25de446fc5aecb301eef34a760ff86a88f7c3407cb75e80ca7daf9321f569d99e08e1e32ff497d9ff
SSDEEP

6144:/rJIuUB04N3UFFBL9FxkHsmBZ9fafJ1nhe08:/qzVN3OneHseZ45he

Score

8^/10

evasion spyware stealer

Malware Config

Targets

- Target
  
  6631b1e738528b27d58be094dc4fe271_JaffaCakes118
- Size
  
  296KB
- MD5
  
  6631b1e738528b27d58be094dc4fe271
- SHA1
  
  a0e625253acf317bf3f824015d29ce6a231c083d
- SHA256
  
  64880bd6b8eb658f15fa0c5b07aaa15643f5b89ba3b7005615a046826a8bd2e9
- SHA512
  
  7a0aed61d9e69963c9f1261261c8a74e1b174390a68b1ab25de446fc5aecb301eef34a760ff86a88f7c3407cb75e80ca7daf9321f569d99e08e1e32ff497d9ff
- SSDEEP
  
  6144:/rJIuUB04N3UFFBL9FxkHsmBZ9fafJ1nhe08:/qzVN3OneHseZ45he
Score

8^/10

evasion spyware stealer
- Disables taskbar notifications via registry modification
  evasion
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealer

behavioral2