c4f5ac45a73e57dbbe9820edecb66d6bfdddabe98d58c11cfe63de4686766987 | Triage

Sharing

General

Target

d68621adb19e0ab4918d3f0dc4de003a_JaffaCakes118
Size

1.1MB
Sample

240909-r2b2mawarc
MD5

d68621adb19e0ab4918d3f0dc4de003a
SHA1

f4b020a686edc8145690c5bcc5dd19f1a6d4e13e
SHA256

c4f5ac45a73e57dbbe9820edecb66d6bfdddabe98d58c11cfe63de4686766987
SHA512

0788cf7ac10b6f66d5cc1968f06d45bd380e534c27324f3c2f7e446d2f34b3596099bfe1b3c78d7137aa39c210a508ee50af217f7640a171570767dc9844bccf
SSDEEP

24576:CGCG6eVC54iOn+9geL+KcKiOzRw17D+osYCE+PA2ST:CA5c4JecKXNw9+os9JPA

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  d68621adb19e0ab4918d3f0dc4de003a_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  d68621adb19e0ab4918d3f0dc4de003a
- SHA1
  
  f4b020a686edc8145690c5bcc5dd19f1a6d4e13e
- SHA256
  
  c4f5ac45a73e57dbbe9820edecb66d6bfdddabe98d58c11cfe63de4686766987
- SHA512
  
  0788cf7ac10b6f66d5cc1968f06d45bd380e534c27324f3c2f7e446d2f34b3596099bfe1b3c78d7137aa39c210a508ee50af217f7640a171570767dc9844bccf
- SSDEEP
  
  24576:CGCG6eVC54iOn+9geL+KcKiOzRw17D+osYCE+PA2ST:CA5c4JecKXNw9+os9JPA
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer