3a52615003e44ad5c02108cd98e0b15e13e6600a2b363c3cf8aff67e6ab77915 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

113b3bb6055aa2695e7cc750c6c8cfeb_JaffaCakes118
Size

1.0MB
Sample

241004-bmr7aswfpq
MD5

113b3bb6055aa2695e7cc750c6c8cfeb
SHA1

84a2b99783a876f75af2714f9a39c403fbe67702
SHA256

3a52615003e44ad5c02108cd98e0b15e13e6600a2b363c3cf8aff67e6ab77915
SHA512

787fa1bfcfeeaf00ef74b86be64db3cf6135dd08e3aff45110434a28fa252319ddf1e951d35edca6c8ffdb2b15400910be1e3882eebd90d3d2690884c9dec67c
SSDEEP

24576:LsSXtCK7/VosEFgaE8eW0NsrK908QARTl7Dm4fTX:QitCItojFgz8eW0nLQARTNKY

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  113b3bb6055aa2695e7cc750c6c8cfeb_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  113b3bb6055aa2695e7cc750c6c8cfeb
- SHA1
  
  84a2b99783a876f75af2714f9a39c403fbe67702
- SHA256
  
  3a52615003e44ad5c02108cd98e0b15e13e6600a2b363c3cf8aff67e6ab77915
- SHA512
  
  787fa1bfcfeeaf00ef74b86be64db3cf6135dd08e3aff45110434a28fa252319ddf1e951d35edca6c8ffdb2b15400910be1e3882eebd90d3d2690884c9dec67c
- SSDEEP
  
  24576:LsSXtCK7/VosEFgaE8eW0NsrK908QARTl7Dm4fTX:QitCItojFgz8eW0nLQARTNKY
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer