063ed080676b77818ad392290d6841601aefe6b4db8e4f4d69fbdaf1e59499f7 | Triage

Sharing

General

Target

83daa5f7121a33f67680adeb3a4c2a28_JaffaCakes118
Size

1006KB
Sample

240809-2qf7batajn
MD5

83daa5f7121a33f67680adeb3a4c2a28
SHA1

0d56b472a20ca0e8f20c1630d2a8b41050625b61
SHA256

063ed080676b77818ad392290d6841601aefe6b4db8e4f4d69fbdaf1e59499f7
SHA512

0765251568eba75330e23f43f75d50e2bf53364ec98d8a37f11e5990a9f66c5b3d466899f50576ea415e1bc7a9cf6aaa2756c04576cefd30225fe2f9e05747e1
SSDEEP

24576:+f/RMpsocGdc9tzeFK9iQVg6aHjIlW83d0ERwbP2a4FU9c:IJM7/mnVDa8toua4+

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  83daa5f7121a33f67680adeb3a4c2a28_JaffaCakes118
- Size
  
  1006KB
- MD5
  
  83daa5f7121a33f67680adeb3a4c2a28
- SHA1
  
  0d56b472a20ca0e8f20c1630d2a8b41050625b61
- SHA256
  
  063ed080676b77818ad392290d6841601aefe6b4db8e4f4d69fbdaf1e59499f7
- SHA512
  
  0765251568eba75330e23f43f75d50e2bf53364ec98d8a37f11e5990a9f66c5b3d466899f50576ea415e1bc7a9cf6aaa2756c04576cefd30225fe2f9e05747e1
- SSDEEP
  
  24576:+f/RMpsocGdc9tzeFK9iQVg6aHjIlW83d0ERwbP2a4FU9c:IJM7/mnVDa8toua4+
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer