b0ae7a02ba791e8afebdaf07dcfcfb8aaa790bd3d3913914f040a2c34f3348a4 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

d031771380...18.exe

windows7-x64

7

d031771380...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

d031771380cd7c9f59ce108ee5d1faa3_JaffaCakes118
Size

179KB
Sample

240906-w4g3wasamb
MD5

d031771380cd7c9f59ce108ee5d1faa3
SHA1

ba54a718d4b12aeadbca541c44877aaeae6b6458
SHA256

b0ae7a02ba791e8afebdaf07dcfcfb8aaa790bd3d3913914f040a2c34f3348a4
SHA512

c485216fdba3e61cc7c13c3daa4e4ff65a0a1dd79f5d81f14bc713e734fc5f2e9e3ee73fccc9b0169bb307b54ca3f83b5aa7d5b1ba3e2dbf41d2e9bef750fc3a
SSDEEP

3072:FWRL3Burv0t8oRbpvx78mReb0pV5gTd6lYcvD55KAaMU7s/pdYjU2iNsZv2GROL:FIL4rvQbpvpCFDQ5vaMT/pd/9y4

Score

7^/10

discovery spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d031771380cd7c9f59ce108ee5d1faa3_JaffaCakes118.exe

Resource

win7-20240729-en

discovery spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

d031771380cd7c9f59ce108ee5d1faa3_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  d031771380cd7c9f59ce108ee5d1faa3_JaffaCakes118
- Size
  
  179KB
- MD5
  
  d031771380cd7c9f59ce108ee5d1faa3
- SHA1
  
  ba54a718d4b12aeadbca541c44877aaeae6b6458
- SHA256
  
  b0ae7a02ba791e8afebdaf07dcfcfb8aaa790bd3d3913914f040a2c34f3348a4
- SHA512
  
  c485216fdba3e61cc7c13c3daa4e4ff65a0a1dd79f5d81f14bc713e734fc5f2e9e3ee73fccc9b0169bb307b54ca3f83b5aa7d5b1ba3e2dbf41d2e9bef750fc3a
- SSDEEP
  
  3072:FWRL3Burv0t8oRbpvx78mReb0pV5gTd6lYcvD55KAaMU7s/pdYjU2iNsZv2GROL:FIL4rvQbpvpCFDQ5vaMT/pd/9y4
Score

7^/10

discovery spyware stealer upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealerupx

behavioral2

© 2018-2025

Terms | Privacy