0a288201d4d7ea35b5a4d1386fc015d918e92f530df097b4df3d333d26cc2020 | Triage

Sharing

General

Target

8bc565d2243adeb0675d43718bb61182_JaffaCakes118
Size

1010KB
Sample

240811-yss24svhnl
MD5

8bc565d2243adeb0675d43718bb61182
SHA1

658056d19cf3449e2d4516c2e322af6b1551b79c
SHA256

0a288201d4d7ea35b5a4d1386fc015d918e92f530df097b4df3d333d26cc2020
SHA512

0b026380505e3d8d7dcd565d2144c6db63393361c237c866ad65ace169f3d1aa9308db0033caec234ac6eba0346c7eb514eead28009485cb4c0fe549e6a449b6
SSDEEP

24576:fWVrvR3/tBagR7riEoq3MBvZdvfm0Aqa78mTufv9SMMDitNcxXgN:fWD3va+1oNZdGN78mTUoMMGNc2

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  8bc565d2243adeb0675d43718bb61182_JaffaCakes118
- Size
  
  1010KB
- MD5
  
  8bc565d2243adeb0675d43718bb61182
- SHA1
  
  658056d19cf3449e2d4516c2e322af6b1551b79c
- SHA256
  
  0a288201d4d7ea35b5a4d1386fc015d918e92f530df097b4df3d333d26cc2020
- SHA512
  
  0b026380505e3d8d7dcd565d2144c6db63393361c237c866ad65ace169f3d1aa9308db0033caec234ac6eba0346c7eb514eead28009485cb4c0fe549e6a449b6
- SSDEEP
  
  24576:fWVrvR3/tBagR7riEoq3MBvZdvfm0Aqa78mTufv9SMMDitNcxXgN:fWD3va+1oNZdGN78mTUoMMGNc2
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer