fbef9d83959c8ca1dc733798a7de5dc25f8212d1985d32aa31dd5910c5eb8ca5 | Triage

Sharing

General

Target

b4cbbdeea636de8188ce5749446d54da_JaffaCakes118
Size

1005KB
Sample

240821-yhcmda1ckl
MD5

b4cbbdeea636de8188ce5749446d54da
SHA1

313d9787ac11a9815e3b30dd18c6d2ba69626c5b
SHA256

fbef9d83959c8ca1dc733798a7de5dc25f8212d1985d32aa31dd5910c5eb8ca5
SHA512

7d4e3777b9578d86a4a21f99935bd892acdc74f1eecea3d1d2fb56aaf75551aef448f5c24b419996f16718adb83b808ac00c768c7b0776c6f0b7d5d8b8f70d3b
SSDEEP

12288:n+hYfYpcsB5k2XDSFWH4YLD1iKgN7lnLWzkwgNzRek18ysVwgM7JnoK6YKy8xHUz:npPYk2XGT8BQYkTAw8ysut7J6j01c0

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  b4cbbdeea636de8188ce5749446d54da_JaffaCakes118
- Size
  
  1005KB
- MD5
  
  b4cbbdeea636de8188ce5749446d54da
- SHA1
  
  313d9787ac11a9815e3b30dd18c6d2ba69626c5b
- SHA256
  
  fbef9d83959c8ca1dc733798a7de5dc25f8212d1985d32aa31dd5910c5eb8ca5
- SHA512
  
  7d4e3777b9578d86a4a21f99935bd892acdc74f1eecea3d1d2fb56aaf75551aef448f5c24b419996f16718adb83b808ac00c768c7b0776c6f0b7d5d8b8f70d3b
- SSDEEP
  
  12288:n+hYfYpcsB5k2XDSFWH4YLD1iKgN7lnLWzkwgNzRek18ysVwgM7JnoK6YKy8xHUz:npPYk2XGT8BQYkTAw8ysut7J6j01c0
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer