9a4d25977535c40e86c3a3deb655799798bda63ce93997b0e562d51c111b582e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe0c35c081523f80388fbedcef90b3b1_JaffaCakes118
Size

1.0MB
Sample

240929-h77aaaxdkh
MD5

fe0c35c081523f80388fbedcef90b3b1
SHA1

1d3e14a29734a637dc658843dde7d1de1c52744d
SHA256

9a4d25977535c40e86c3a3deb655799798bda63ce93997b0e562d51c111b582e
SHA512

4e5855b86483faf860d2517789735d30c8defff6d652d10fe7c4bb9ea841a976d0c89e33f1dc86eb63f5d52638dd573a0e66ffade9ad82bd94fa6f930657bd78
SSDEEP

24576:6/QS2mjh4WlPsLm76MkyDHRDcxylpfXrVt3zNS2dxyPb:6/QSjjlmARXfX7DDdx

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  fe0c35c081523f80388fbedcef90b3b1_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  fe0c35c081523f80388fbedcef90b3b1
- SHA1
  
  1d3e14a29734a637dc658843dde7d1de1c52744d
- SHA256
  
  9a4d25977535c40e86c3a3deb655799798bda63ce93997b0e562d51c111b582e
- SHA512
  
  4e5855b86483faf860d2517789735d30c8defff6d652d10fe7c4bb9ea841a976d0c89e33f1dc86eb63f5d52638dd573a0e66ffade9ad82bd94fa6f930657bd78
- SSDEEP
  
  24576:6/QS2mjh4WlPsLm76MkyDHRDcxylpfXrVt3zNS2dxyPb:6/QSjjlmARXfX7DDdx
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer