ac4f9a11aaf734dab947c300a33c9c0f594b678647070c3aaf9cf3b61230b13a | Triage

Sharing

General

Target

ba2572d9bc4158fca40a01ae0961c9f0_JaffaCakes118
Size

1.1MB
Sample

240823-ds2n2avelp
MD5

ba2572d9bc4158fca40a01ae0961c9f0
SHA1

fec35ce63ee3998fd6cd6c3d752c4108c1fb04bc
SHA256

ac4f9a11aaf734dab947c300a33c9c0f594b678647070c3aaf9cf3b61230b13a
SHA512

097749014f7f620fe6e419938dab06e370737e1c1a6c14be246ff9ca3c5553020afc022f512405d99c2f7a2cb5d0de7b16b03852c188ce9ea78200088cc3af78
SSDEEP

24576:ON0pCkqIt+R+eMqVH1Yey93P6TRloC14efSsTzhYTlEyDm3h:/MVH1YZf6TR2CmefTTK+G2

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  ba2572d9bc4158fca40a01ae0961c9f0_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  ba2572d9bc4158fca40a01ae0961c9f0
- SHA1
  
  fec35ce63ee3998fd6cd6c3d752c4108c1fb04bc
- SHA256
  
  ac4f9a11aaf734dab947c300a33c9c0f594b678647070c3aaf9cf3b61230b13a
- SHA512
  
  097749014f7f620fe6e419938dab06e370737e1c1a6c14be246ff9ca3c5553020afc022f512405d99c2f7a2cb5d0de7b16b03852c188ce9ea78200088cc3af78
- SSDEEP
  
  24576:ON0pCkqIt+R+eMqVH1Yey93P6TRloC14efSsTzhYTlEyDm3h:/MVH1YZf6TR2CmefTTK+G2
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer