1115d726270ab7bfea141c033ea7a18f5e3b6278095354b12142e3ad03098bc4 | Triage

Sharing

General

Target

e2491e15577d451d993907d084757744_JaffaCakes118
Size

1.1MB
Sample

240915-mpw4tazapd
MD5

e2491e15577d451d993907d084757744
SHA1

cf566241a6b5d14363daf06d3de8c8a956e40431
SHA256

1115d726270ab7bfea141c033ea7a18f5e3b6278095354b12142e3ad03098bc4
SHA512

4ce4a1da1085c2b07d6baa41631b05e3ff57967163ee6e151bab007f45a389765917b1b450dd0a5eea94a97dd28faaea2922cf6f7a6ffc006f90249364092eac
SSDEEP

24576:mnYkBWPNE1WGBD6DzCvjH4qgD93Oq7smMTJ+w:mnQPC1WO4qgD93OGsFTJ

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  e2491e15577d451d993907d084757744_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  e2491e15577d451d993907d084757744
- SHA1
  
  cf566241a6b5d14363daf06d3de8c8a956e40431
- SHA256
  
  1115d726270ab7bfea141c033ea7a18f5e3b6278095354b12142e3ad03098bc4
- SHA512
  
  4ce4a1da1085c2b07d6baa41631b05e3ff57967163ee6e151bab007f45a389765917b1b450dd0a5eea94a97dd28faaea2922cf6f7a6ffc006f90249364092eac
- SSDEEP
  
  24576:mnYkBWPNE1WGBD6DzCvjH4qgD93Oq7smMTJ+w:mnQPC1WO4qgD93OGsFTJ
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer