b29cb62b58b44ca0515f66629277058dcd2b87426a319f343818540294b355e6 | Triage

Sharing

General

Target

0838e61dd73478a3543717c09f8f91e5_JaffaCakes118
Size

1.1MB
Sample

241002-bpp5qazdrl
MD5

0838e61dd73478a3543717c09f8f91e5
SHA1

e48355f708c62e45183d7b0ba442c3b0b47d9a14
SHA256

b29cb62b58b44ca0515f66629277058dcd2b87426a319f343818540294b355e6
SHA512

b316cbf548775a04adec2ffd70f754316e001abceb3a247f701614cf9421b2186930f55e111784465e0209a231b110ae22baa365a715529e579a35ddf1dd9530
SSDEEP

24576:rADw37P6j9OQGAi2tLZ0EeLNXSaLIYJV6Ns142NrQw:ccLyxHiKZ0DiaLIaV6Ns14YrQ

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  0838e61dd73478a3543717c09f8f91e5_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  0838e61dd73478a3543717c09f8f91e5
- SHA1
  
  e48355f708c62e45183d7b0ba442c3b0b47d9a14
- SHA256
  
  b29cb62b58b44ca0515f66629277058dcd2b87426a319f343818540294b355e6
- SHA512
  
  b316cbf548775a04adec2ffd70f754316e001abceb3a247f701614cf9421b2186930f55e111784465e0209a231b110ae22baa365a715529e579a35ddf1dd9530
- SSDEEP
  
  24576:rADw37P6j9OQGAi2tLZ0EeLNXSaLIYJV6Ns142NrQw:ccLyxHiKZ0DiaLIaV6Ns14YrQ
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer