603df0dd965d79bd58e085cc426ebcf1104453318b94cd784b07a687957a2074 | Triage

Sharing

General

Target

1273c02b121d1094ad131a4c9edfc7b5_JaffaCakes118
Size

1.0MB
Sample

241004-jmlcrascqj
MD5

1273c02b121d1094ad131a4c9edfc7b5
SHA1

ba46db585e8dcb26f4317a8c9bdffeaff705857f
SHA256

603df0dd965d79bd58e085cc426ebcf1104453318b94cd784b07a687957a2074
SHA512

1f3b3f50d63c3a0eecf1edef25cac23317227c0ba0b05a76fe157ce3188175280a8ec63a71a08e495d7f2438abcf7ad9157f918dc108aba5e6a054e3b8375b4c
SSDEEP

24576:zTUPY+Dc12PTE88xtJD62YHZfAET/4XQg8h2:XUPY2pO+2Y9dTwXF

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  1273c02b121d1094ad131a4c9edfc7b5_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  1273c02b121d1094ad131a4c9edfc7b5
- SHA1
  
  ba46db585e8dcb26f4317a8c9bdffeaff705857f
- SHA256
  
  603df0dd965d79bd58e085cc426ebcf1104453318b94cd784b07a687957a2074
- SHA512
  
  1f3b3f50d63c3a0eecf1edef25cac23317227c0ba0b05a76fe157ce3188175280a8ec63a71a08e495d7f2438abcf7ad9157f918dc108aba5e6a054e3b8375b4c
- SSDEEP
  
  24576:zTUPY+Dc12PTE88xtJD62YHZfAET/4XQg8h2:XUPY2pO+2Y9dTwXF
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer