ac3e23a76008c478032ab75f4692abef518abc0e0248739683c4d4043de9f269 | Triage

Sharing

General

Target

a7f612c73daf4620e95744c67df4ab84_JaffaCakes118
Size

356KB
Sample

240818-yez89stfrk
MD5

a7f612c73daf4620e95744c67df4ab84
SHA1

9057646a1d9057879cd40dfeb092108686d063fc
SHA256

ac3e23a76008c478032ab75f4692abef518abc0e0248739683c4d4043de9f269
SHA512

19c52e1df2d2fed53459067fd2051f288720bd417e5a2027b8d740b743ef69cf3a51e328d10cecc33e012634546b868b43e25b6de0a763a816d5eacfa76ebb25
SSDEEP

6144:63SFonFamhK6X3NyXjpm+dxKgpblW/cK:gzLL9gmau

Score

8^/10

discovery evasion spyware stealer

Malware Config

Targets

- Target
  
  a7f612c73daf4620e95744c67df4ab84_JaffaCakes118
- Size
  
  356KB
- MD5
  
  a7f612c73daf4620e95744c67df4ab84
- SHA1
  
  9057646a1d9057879cd40dfeb092108686d063fc
- SHA256
  
  ac3e23a76008c478032ab75f4692abef518abc0e0248739683c4d4043de9f269
- SHA512
  
  19c52e1df2d2fed53459067fd2051f288720bd417e5a2027b8d740b743ef69cf3a51e328d10cecc33e012634546b868b43e25b6de0a763a816d5eacfa76ebb25
- SSDEEP
  
  6144:63SFonFamhK6X3NyXjpm+dxKgpblW/cK:gzLL9gmau
Score

8^/10

discovery evasion spyware stealer
- Disables taskbar notifications via registry modification
  evasion
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionspywarestealer

behavioral2