b3bbfb8a6a12363b87a606211e94220cf8e0f9f712a428bdbc0dc3245f5587c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cb8572e659431366a12f1ba215bcf10_JaffaCakes118
Size

1.0MB
Sample

241002-2ghc1s1cjq
MD5

0cb8572e659431366a12f1ba215bcf10
SHA1

201e3f99ffda24cfbe3be655389d835c9aeaeaa5
SHA256

b3bbfb8a6a12363b87a606211e94220cf8e0f9f712a428bdbc0dc3245f5587c0
SHA512

ce1a62d7fbf6709025508ed7995a76142be4abc539cfe8aa110f425ac6713fa60115ae6575696fd34d1fcba357f94a12d5beb541268f91bb0b9c5fb1776cfae2
SSDEEP

24576:zTUPY+Dc12PTE88xtJD62YHZfAET/4XQg8h2:XUPY2pO+2Y9dTwXF

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  0cb8572e659431366a12f1ba215bcf10_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  0cb8572e659431366a12f1ba215bcf10
- SHA1
  
  201e3f99ffda24cfbe3be655389d835c9aeaeaa5
- SHA256
  
  b3bbfb8a6a12363b87a606211e94220cf8e0f9f712a428bdbc0dc3245f5587c0
- SHA512
  
  ce1a62d7fbf6709025508ed7995a76142be4abc539cfe8aa110f425ac6713fa60115ae6575696fd34d1fcba357f94a12d5beb541268f91bb0b9c5fb1776cfae2
- SSDEEP
  
  24576:zTUPY+Dc12PTE88xtJD62YHZfAET/4XQg8h2:XUPY2pO+2Y9dTwXF
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer