b9ae618068a7b38440cf976f30f972d0d8c789b5bdac687488a98b92c77f2ba6 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

25b24a9b9d...18.exe

windows7-x64

7

25b24a9b9d...18.exe

windows10-2004-x64

3

Sharing

General

Target

25b24a9b9d60c4b89dc82a64c8cc6b12_JaffaCakes118
Size

182KB
Sample

241008-1a5pasyarm
MD5

25b24a9b9d60c4b89dc82a64c8cc6b12
SHA1

ec8c449f38917d7e73118d52c97ce131795b3737
SHA256

b9ae618068a7b38440cf976f30f972d0d8c789b5bdac687488a98b92c77f2ba6
SHA512

73b81feab9e7ae63af075ff348a0e6b8da2b1b085c9fff1f4289aad2f00a40c833a04f3e740c6621a607491a555bfd57e4f4f819a07c9a3b987af05a0dd8a41d
SSDEEP

3072:/PVaWd4f6VvPj9Gqp2TYwMMzlFIAlHepS2Bp8S/hohourdZ+tjVB25Z7K:/BPJGVEFTSKayu0VB25

Score

7^/10

discovery spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

25b24a9b9d60c4b89dc82a64c8cc6b12_JaffaCakes118.exe

Resource

win7-20240903-en

discovery spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

25b24a9b9d60c4b89dc82a64c8cc6b12_JaffaCakes118.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  25b24a9b9d60c4b89dc82a64c8cc6b12_JaffaCakes118
- Size
  
  182KB
- MD5
  
  25b24a9b9d60c4b89dc82a64c8cc6b12
- SHA1
  
  ec8c449f38917d7e73118d52c97ce131795b3737
- SHA256
  
  b9ae618068a7b38440cf976f30f972d0d8c789b5bdac687488a98b92c77f2ba6
- SHA512
  
  73b81feab9e7ae63af075ff348a0e6b8da2b1b085c9fff1f4289aad2f00a40c833a04f3e740c6621a607491a555bfd57e4f4f819a07c9a3b987af05a0dd8a41d
- SSDEEP
  
  3072:/PVaWd4f6VvPj9Gqp2TYwMMzlFIAlHepS2Bp8S/hohourdZ+tjVB25Z7K:/BPJGVEFTSKayu0VB25
Score

7^/10

discovery spyware stealer upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealerupx

behavioral2

© 2018-2025

Terms | Privacy