dc25cd49da887bd13216bb401472c84af13a94d7194accc1b4047a3d4046eb71 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dd85c9da4e...18.exe

windows7-x64

7

dd85c9da4e...18.exe

windows10-2004-x64

7

Sharing

General

Target

dd85c9da4ed59b12a5f85f903faf6488_JaffaCakes118
Size

546KB
Sample

240913-dcl9eazfmj
MD5

dd85c9da4ed59b12a5f85f903faf6488
SHA1

558aec414d7b6d9a9f8d7075202f4f8eb880deec
SHA256

dc25cd49da887bd13216bb401472c84af13a94d7194accc1b4047a3d4046eb71
SHA512

cc19a224425f0f3905e78075d361d2625de3691bece0f31c4a5ffbe84fccb056e1fca1fe4a32fe403f480d8edf8379770c4a68b449e3bf9e48acb8a550a5ad12
SSDEEP

12288:WTuG5vQyIQ8rKXipyYjrFky1M9WQBBR9eS+j+Mz+ZZB:WFNQyIQbiqlQQBBR9ePCdZZB

Score

7^/10

discovery spyware stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dd85c9da4ed59b12a5f85f903faf6488_JaffaCakes118.exe

Resource

win7-20240708-en

discovery spyware stealer upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

dd85c9da4ed59b12a5f85f903faf6488_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery spyware stealer upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  dd85c9da4ed59b12a5f85f903faf6488_JaffaCakes118
- Size
  
  546KB
- MD5
  
  dd85c9da4ed59b12a5f85f903faf6488
- SHA1
  
  558aec414d7b6d9a9f8d7075202f4f8eb880deec
- SHA256
  
  dc25cd49da887bd13216bb401472c84af13a94d7194accc1b4047a3d4046eb71
- SHA512
  
  cc19a224425f0f3905e78075d361d2625de3691bece0f31c4a5ffbe84fccb056e1fca1fe4a32fe403f480d8edf8379770c4a68b449e3bf9e48acb8a550a5ad12
- SSDEEP
  
  12288:WTuG5vQyIQ8rKXipyYjrFky1M9WQBBR9eS+j+Mz+ZZB:WFNQyIQbiqlQQBBR9ePCdZZB
Score

7^/10

discovery spyware stealer upx
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealerupx

behavioral2

discoveryspywarestealerupx

© 2018-2025

Terms | Privacy