a45b0e5c7d5b7ef6058c923d2925aeff86c7ec6843fae3dd0f193ec5c0b3c1cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

120a4794f8410a5131eaf7f301b35868_JaffaCakes118
Size

1.2MB
Sample

241004-f9csca1dkf
MD5

120a4794f8410a5131eaf7f301b35868
SHA1

ee96b8651e8133032c9f16e15477cf9a4fe95ed0
SHA256

a45b0e5c7d5b7ef6058c923d2925aeff86c7ec6843fae3dd0f193ec5c0b3c1cf
SHA512

e72c795064ab537a3badb245536b446757bd0ea9a84b851acacedf5869795322253386a2d66332e1343496efe235b1d9f88381722ce3ff3500724192ee4a4a0b
SSDEEP

24576:RK98fdhYcCN2boApazAdwWA1AriUByz6UnDPAs:o98fdhYcw2LEAdCkLSnT

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  120a4794f8410a5131eaf7f301b35868_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  120a4794f8410a5131eaf7f301b35868
- SHA1
  
  ee96b8651e8133032c9f16e15477cf9a4fe95ed0
- SHA256
  
  a45b0e5c7d5b7ef6058c923d2925aeff86c7ec6843fae3dd0f193ec5c0b3c1cf
- SHA512
  
  e72c795064ab537a3badb245536b446757bd0ea9a84b851acacedf5869795322253386a2d66332e1343496efe235b1d9f88381722ce3ff3500724192ee4a4a0b
- SSDEEP
  
  24576:RK98fdhYcCN2boApazAdwWA1AriUByz6UnDPAs:o98fdhYcw2LEAdCkLSnT
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer