d8c396bbd356b63d241994c9c862dd7e85f24cce41123c7f5e2926afb59ed2cb | Triage

Sharing

General

Target

2a730574d4248d854cdd7a26374ac184_JaffaCakes118
Size

1.1MB
Sample

241009-ekbnbatfjn
MD5

2a730574d4248d854cdd7a26374ac184
SHA1

5769395744b026508cd844ed6b675323b87bca90
SHA256

d8c396bbd356b63d241994c9c862dd7e85f24cce41123c7f5e2926afb59ed2cb
SHA512

98bd1ddfe0209b5e0887dc34146569c04dff50a70d1a562f2605536fa3cbe96b17211f4924c24d07a3fe397ce8a585ce6ec3c84d2fb3b8cba2bf7d2b9da3ae0f
SSDEEP

24576:SFt+pJJ0bSiGKHLF8n6EWns+KU6jez1aYvT998rwBLQ:SfsJASiGKre6o+KHjY1JT991BL

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  2a730574d4248d854cdd7a26374ac184_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  2a730574d4248d854cdd7a26374ac184
- SHA1
  
  5769395744b026508cd844ed6b675323b87bca90
- SHA256
  
  d8c396bbd356b63d241994c9c862dd7e85f24cce41123c7f5e2926afb59ed2cb
- SHA512
  
  98bd1ddfe0209b5e0887dc34146569c04dff50a70d1a562f2605536fa3cbe96b17211f4924c24d07a3fe397ce8a585ce6ec3c84d2fb3b8cba2bf7d2b9da3ae0f
- SSDEEP
  
  24576:SFt+pJJ0bSiGKHLF8n6EWns+KU6jez1aYvT998rwBLQ:SfsJASiGKre6o+KHjY1JT991BL
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer