a6f761c1d56a5ec649a5046345883f6338ca545cd8ef65f84682d5ac66fc7d7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af1e3b35af7da25d9fd8ce234bf0ccab_JaffaCakes118
Size

220KB
Sample

240820-n3k45sthnp
MD5

af1e3b35af7da25d9fd8ce234bf0ccab
SHA1

7110ca924a9d19a4a22ae6aa51affa5dce28132c
SHA256

a6f761c1d56a5ec649a5046345883f6338ca545cd8ef65f84682d5ac66fc7d7e
SHA512

0f3d7ae017344ec8c072b57dacd76c3288a8ab64fb77192f77f45e9494c9a4914584e25dd251a7c6c6aa5ce5c0370c2d06735ae0db9f1f46fca8131d6c68eead
SSDEEP

6144:9bAOO7/nl6AKOuW2HmGuWMWcp1ah4tpr8iGr:9bne4AKOuW2HmGuWMWusgprxU

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  af1e3b35af7da25d9fd8ce234bf0ccab_JaffaCakes118
- Size
  
  220KB
- MD5
  
  af1e3b35af7da25d9fd8ce234bf0ccab
- SHA1
  
  7110ca924a9d19a4a22ae6aa51affa5dce28132c
- SHA256
  
  a6f761c1d56a5ec649a5046345883f6338ca545cd8ef65f84682d5ac66fc7d7e
- SHA512
  
  0f3d7ae017344ec8c072b57dacd76c3288a8ab64fb77192f77f45e9494c9a4914584e25dd251a7c6c6aa5ce5c0370c2d06735ae0db9f1f46fca8131d6c68eead
- SSDEEP
  
  6144:9bAOO7/nl6AKOuW2HmGuWMWcp1ah4tpr8iGr:9bne4AKOuW2HmGuWMWusgprxU
Score

7^/10

discovery spyware stealer
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer