e822e951320dfb97ba2363720215c9dffd3e2c4cfb4c56364a5db560a9c3276f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25c41bedddc7b95bfd5e4c0e67428e50_JaffaCakes118
Size

875KB
Sample

241008-1elrzsyekq
MD5

25c41bedddc7b95bfd5e4c0e67428e50
SHA1

d6d6e5d50d450bf7c879672793f45116f7a0c57c
SHA256

e822e951320dfb97ba2363720215c9dffd3e2c4cfb4c56364a5db560a9c3276f
SHA512

ad50e87e6ef56e12c0ca74830b1374bb435301be24959d7855347c643c805096c94e16c375b524f7e8f1378825a04a8e25df0571e64fd5cef921d01cbbcd7f8f
SSDEEP

12288:PYFCEoNadKfLhfaeDTCbMU3/6bovBJ6rtkUgisADs/+tmqInPzEpYr+UMOxD+Hb4:PYF93/zvj6rOADs/+tGPzE+VxqHX4j9l

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  25c41bedddc7b95bfd5e4c0e67428e50_JaffaCakes118
- Size
  
  875KB
- MD5
  
  25c41bedddc7b95bfd5e4c0e67428e50
- SHA1
  
  d6d6e5d50d450bf7c879672793f45116f7a0c57c
- SHA256
  
  e822e951320dfb97ba2363720215c9dffd3e2c4cfb4c56364a5db560a9c3276f
- SHA512
  
  ad50e87e6ef56e12c0ca74830b1374bb435301be24959d7855347c643c805096c94e16c375b524f7e8f1378825a04a8e25df0571e64fd5cef921d01cbbcd7f8f
- SSDEEP
  
  12288:PYFCEoNadKfLhfaeDTCbMU3/6bovBJ6rtkUgisADs/+tmqInPzEpYr+UMOxD+Hb4:PYF93/zvj6rOADs/+tGPzE+VxqHX4j9l
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer