9ef0ee733521cf9fbf25315ea02b7d7f08e8f41859e5f6b77b8b50836bb5c01d | Triage

Sharing

General

Target

cf4a7f096f7b1b1d6733aff2649b072e_JaffaCakes118
Size

1.1MB
Sample

240906-l4hdjazfnj
MD5

cf4a7f096f7b1b1d6733aff2649b072e
SHA1

47044af3c27af60badc12339eeb789d5f5bb2e33
SHA256

9ef0ee733521cf9fbf25315ea02b7d7f08e8f41859e5f6b77b8b50836bb5c01d
SHA512

bade6753ee78d060401c109484b1650cd9baff9041b828539a53c1e53367c132fbaaf72ca23e67b764176d7ec2e85d05a224de9068d0344b1810624452426a1d
SSDEEP

24576:Y4oKmf5R/pOCuxGU13IlBwaa6NKHb/JBE6JuHMfMooE:Y4uv/pOCIGk3Ivwaa6IHz3E6JuHMfM

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  cf4a7f096f7b1b1d6733aff2649b072e_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  cf4a7f096f7b1b1d6733aff2649b072e
- SHA1
  
  47044af3c27af60badc12339eeb789d5f5bb2e33
- SHA256
  
  9ef0ee733521cf9fbf25315ea02b7d7f08e8f41859e5f6b77b8b50836bb5c01d
- SHA512
  
  bade6753ee78d060401c109484b1650cd9baff9041b828539a53c1e53367c132fbaaf72ca23e67b764176d7ec2e85d05a224de9068d0344b1810624452426a1d
- SSDEEP
  
  24576:Y4oKmf5R/pOCuxGU13IlBwaa6NKHb/JBE6JuHMfMooE:Y4uv/pOCIGk3Ivwaa6IHz3E6JuHMfM
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer