d341bed503068a4b3992a85e821a852683d1751ff1710641ad4645141515e39f | Triage

Sharing

General

Target

baf6f4dfeb528e1e9ffcaff7e6550cc3_JaffaCakes118
Size

1.2MB
Sample

240823-j5zm4awbmp
MD5

baf6f4dfeb528e1e9ffcaff7e6550cc3
SHA1

e4a828036d199cb46a5b5fda5f42bdb20e3cd30f
SHA256

d341bed503068a4b3992a85e821a852683d1751ff1710641ad4645141515e39f
SHA512

f15d65119f82a100dbbafb0d4b79b9a75edaed8cdc2f30f3f2112c3af21107d70aff8d3fe9c6521ba2aa8cf1e955ebbe3e83efe01eb56e696baa8038e9b0d2d0
SSDEEP

12288:/X/eOyaiquO+lSTI+XTQcJtEWySf0KY5nCX/eOyaiquO+lST1X3:/X/eO4qPTzDQcLEq8znCX/eO4qPT1X3

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  baf6f4dfeb528e1e9ffcaff7e6550cc3_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  baf6f4dfeb528e1e9ffcaff7e6550cc3
- SHA1
  
  e4a828036d199cb46a5b5fda5f42bdb20e3cd30f
- SHA256
  
  d341bed503068a4b3992a85e821a852683d1751ff1710641ad4645141515e39f
- SHA512
  
  f15d65119f82a100dbbafb0d4b79b9a75edaed8cdc2f30f3f2112c3af21107d70aff8d3fe9c6521ba2aa8cf1e955ebbe3e83efe01eb56e696baa8038e9b0d2d0
- SSDEEP
  
  12288:/X/eOyaiquO+lSTI+XTQcJtEWySf0KY5nCX/eOyaiquO+lST1X3:/X/eO4qPTzDQcLEq8znCX/eO4qPT1X3
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer