2539056a3b8538ab22751827d6d6246a119bf277e4ca4448410f9a1749e6771a | Triage

Sharing

General

Target

d149c6232c16441960cadba16328d526_JaffaCakes118
Size

1.1MB
Sample

240907-g95c2azcnb
MD5

d149c6232c16441960cadba16328d526
SHA1

9214c5d1378b8d4ac65e4de66a7b34e7f19e01d9
SHA256

2539056a3b8538ab22751827d6d6246a119bf277e4ca4448410f9a1749e6771a
SHA512

f29db7301268e97f7177cd2a9764d385984a7e0078989b63266d7e4da3a8b905edf5479bc3db570251d95691f81532d9071cd18122776cb1bcb2ef9c1d3f0708
SSDEEP

24576:sjx/gniOny5+sw+0/ZTCpPSeMWserOoqb:Dnzy5Vw7CFpspo

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  d149c6232c16441960cadba16328d526_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  d149c6232c16441960cadba16328d526
- SHA1
  
  9214c5d1378b8d4ac65e4de66a7b34e7f19e01d9
- SHA256
  
  2539056a3b8538ab22751827d6d6246a119bf277e4ca4448410f9a1749e6771a
- SHA512
  
  f29db7301268e97f7177cd2a9764d385984a7e0078989b63266d7e4da3a8b905edf5479bc3db570251d95691f81532d9071cd18122776cb1bcb2ef9c1d3f0708
- SSDEEP
  
  24576:sjx/gniOny5+sw+0/ZTCpPSeMWserOoqb:Dnzy5Vw7CFpspo
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer