61e80e0f79dab157a7efed07e3b4d1c1f5b79f1aaa3cef08d15d917a3c79f4ef | Triage

Sharing

General

Target

bcb060beab7eaf92ec1db7d6a5fc2b4f_JaffaCakes118
Size

1.1MB
Sample

240823-w1e44syglg
MD5

bcb060beab7eaf92ec1db7d6a5fc2b4f
SHA1

6672eda1e319bdf5e22c80df88110be5faab53ef
SHA256

61e80e0f79dab157a7efed07e3b4d1c1f5b79f1aaa3cef08d15d917a3c79f4ef
SHA512

8d20a1e3b358c100a31ac8b765a1424ed215d4ccc471fb621da9cebee1795d4e1a265ab6d4055d58c31414c0be74b771a42a2f03130be61295043ba13aa42875
SSDEEP

24576:RUp9ToJ9BTh+rrDP4KkhnjCkCDFRTSEXoTj7g1o:WpKT+HDgKkhjXWfT5XQ7

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  bcb060beab7eaf92ec1db7d6a5fc2b4f_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  bcb060beab7eaf92ec1db7d6a5fc2b4f
- SHA1
  
  6672eda1e319bdf5e22c80df88110be5faab53ef
- SHA256
  
  61e80e0f79dab157a7efed07e3b4d1c1f5b79f1aaa3cef08d15d917a3c79f4ef
- SHA512
  
  8d20a1e3b358c100a31ac8b765a1424ed215d4ccc471fb621da9cebee1795d4e1a265ab6d4055d58c31414c0be74b771a42a2f03130be61295043ba13aa42875
- SSDEEP
  
  24576:RUp9ToJ9BTh+rrDP4KkhnjCkCDFRTSEXoTj7g1o:WpKT+HDgKkhjXWfT5XQ7
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer