4991842ec7463265ac78d50ac08b6297cdb5ac8ae08762c5dcb0f85674d38226 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff58c8aa7f20b661360d08eca8deb1e3_JaffaCakes118
Size

430KB
Sample

240929-z4pdqs1cmr
MD5

ff58c8aa7f20b661360d08eca8deb1e3
SHA1

c068e63591f9e7faf61b6b00ef021c19e359c68b
SHA256

4991842ec7463265ac78d50ac08b6297cdb5ac8ae08762c5dcb0f85674d38226
SHA512

b5020c490cefe5ab6110f20212f7a424957fb44af70cd547f7cd13a1cb14287ff67f8df5de6037d35591af189f20a98a9887b9a675d6b508c9d2195b787ffc70
SSDEEP

12288:9jzQNT1FMqaCKQlAsADrSFd2PmJxEs0qoOwg6s7cFJpH:9jzQhvZaZWFYPmJxw2AJpH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ff58c8aa7f20b661360d08eca8deb1e3_JaffaCakes118
- Size
  
  430KB
- MD5
  
  ff58c8aa7f20b661360d08eca8deb1e3
- SHA1
  
  c068e63591f9e7faf61b6b00ef021c19e359c68b
- SHA256
  
  4991842ec7463265ac78d50ac08b6297cdb5ac8ae08762c5dcb0f85674d38226
- SHA512
  
  b5020c490cefe5ab6110f20212f7a424957fb44af70cd547f7cd13a1cb14287ff67f8df5de6037d35591af189f20a98a9887b9a675d6b508c9d2195b787ffc70
- SSDEEP
  
  12288:9jzQNT1FMqaCKQlAsADrSFd2PmJxEs0qoOwg6s7cFJpH:9jzQhvZaZWFYPmJxw2AJpH
Score

7^/10

spyware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2