90b5790f6c9a8c236406115445a729b4261d3efaf4dadfb823e6f6210086aef3 | Triage

Sharing

General

Target

dddbfbf450db73123a18dd997304b3f7_JaffaCakes118
Size

1016KB
Sample

240913-g8z2xszald
MD5

dddbfbf450db73123a18dd997304b3f7
SHA1

51a12d3eb683400d8db9168cc948c1476d806168
SHA256

90b5790f6c9a8c236406115445a729b4261d3efaf4dadfb823e6f6210086aef3
SHA512

ed4817c2aade8027a8b59f9e96c769c01905a8fa793db0708fdee16add9dbd71fc5bdca6562926222e8ec9d04b8316345f93fc48362d7451196aa74e16c41d53
SSDEEP

12288:k1vuNZAM9lvyX09F12DTku2YZwFRE8zJttaLtPgRAKVlMfEiAwc4j7glMF0fzFd4:k8xv5D12fku2YSPJ2JgP4w4j2zD4

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  dddbfbf450db73123a18dd997304b3f7_JaffaCakes118
- Size
  
  1016KB
- MD5
  
  dddbfbf450db73123a18dd997304b3f7
- SHA1
  
  51a12d3eb683400d8db9168cc948c1476d806168
- SHA256
  
  90b5790f6c9a8c236406115445a729b4261d3efaf4dadfb823e6f6210086aef3
- SHA512
  
  ed4817c2aade8027a8b59f9e96c769c01905a8fa793db0708fdee16add9dbd71fc5bdca6562926222e8ec9d04b8316345f93fc48362d7451196aa74e16c41d53
- SSDEEP
  
  12288:k1vuNZAM9lvyX09F12DTku2YZwFRE8zJttaLtPgRAKVlMfEiAwc4j7glMF0fzFd4:k8xv5D12fku2YSPJ2JgP4w4j2zD4
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer