5bb850c394d4ba81839d2291d4a4966bc6d0cea7b336143ebe96267d15343185 | Triage

Sharing

General

Target

b65a7e05d9f8d8fd30518eb56515ac51_JaffaCakes118
Size

1.1MB
Sample

240822-e53brsscjp
MD5

b65a7e05d9f8d8fd30518eb56515ac51
SHA1

c0c11a33955d68227ccd8550c0782c2608d62985
SHA256

5bb850c394d4ba81839d2291d4a4966bc6d0cea7b336143ebe96267d15343185
SHA512

4d20eed0926e298abe013bcfee9c3faeb4e5d824d3d393250d5892f55949dab928c644079981cadf763442c51aad555791f49d03e2d8b79876a9be04956c8289
SSDEEP

24576:wjMT3F4D2Kr12OmrWZZtAdpdDnNEh4YNbM63zTXhq+K1:wjMT3F4DHr12OmroZtAdfDnNEXNb53zU

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  b65a7e05d9f8d8fd30518eb56515ac51_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  b65a7e05d9f8d8fd30518eb56515ac51
- SHA1
  
  c0c11a33955d68227ccd8550c0782c2608d62985
- SHA256
  
  5bb850c394d4ba81839d2291d4a4966bc6d0cea7b336143ebe96267d15343185
- SHA512
  
  4d20eed0926e298abe013bcfee9c3faeb4e5d824d3d393250d5892f55949dab928c644079981cadf763442c51aad555791f49d03e2d8b79876a9be04956c8289
- SSDEEP
  
  24576:wjMT3F4D2Kr12OmrWZZtAdpdDnNEh4YNbM63zTXhq+K1:wjMT3F4DHr12OmroZtAdfDnNEXNb53zU
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer