e7fcb8b879b9cf2f79bce99a59cf86c835cca9bb5f21458e0f83d0afc496f758 | Triage

Sharing

General

Target

43241cc5b74eca6252dc8db2f3fb39eb_JaffaCakes118
Size

1.0MB
Sample

241014-t5bw5svcra
MD5

43241cc5b74eca6252dc8db2f3fb39eb
SHA1

351a3bb81928c786557944e49ed118cc5f017902
SHA256

e7fcb8b879b9cf2f79bce99a59cf86c835cca9bb5f21458e0f83d0afc496f758
SHA512

083bad579724279e4ca84fe85f4273fed5dd3e02f97d3c84924063ddac82c3bc58965d5f99755ed41e0411080916694d0848f68d3f2743590c41ee3423ea7e72
SSDEEP

24576:QYBOdy1mnv66RVjjen0u2t/dn3FvL7UPEIw//U9uC1H0ETuTPlVwDf1:QOJ1mnv66HjjC0u2t/dn3N+w//GuC1HX

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  43241cc5b74eca6252dc8db2f3fb39eb_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  43241cc5b74eca6252dc8db2f3fb39eb
- SHA1
  
  351a3bb81928c786557944e49ed118cc5f017902
- SHA256
  
  e7fcb8b879b9cf2f79bce99a59cf86c835cca9bb5f21458e0f83d0afc496f758
- SHA512
  
  083bad579724279e4ca84fe85f4273fed5dd3e02f97d3c84924063ddac82c3bc58965d5f99755ed41e0411080916694d0848f68d3f2743590c41ee3423ea7e72
- SSDEEP
  
  24576:QYBOdy1mnv66RVjjen0u2t/dn3FvL7UPEIw//U9uC1H0ETuTPlVwDf1:QOJ1mnv66HjjC0u2t/dn3N+w//GuC1HX
Score

7^/10

discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer