pandastealer | e31a1c947d8e470d136959beb047c802fe894ec7f3f3ae5dc0b106e6dc2b1053 | Triage

Sharing

General

Target

JaffaCakes118_61c150ab2f4344c7096fcc673ccbc658
Size

664KB
Sample

250310-2j96ta1lt7
MD5

61c150ab2f4344c7096fcc673ccbc658
SHA1

13bdf5df5e1abd801da31e1ac9f44a9ca77e9a78
SHA256

e31a1c947d8e470d136959beb047c802fe894ec7f3f3ae5dc0b106e6dc2b1053
SHA512

0ff602e1e2d89f10da20a970ee314aa01b905095fe4d3df5ea211187f5f95a77932f7b951d536c2853c7f2014cbb1b215c4f3b2073ec4b937f761c53e7ba1dc4
SSDEEP

12288:22eIlzdXH75e+BzWbSnIvcg3wc3aTvDTbdw6rNFxKf99L5H:beIxdXle+Bn+3wea3TR3xKf99L

Score

10^/10

pandastealer discovery spyware stealer

Malware Config

Targets

- Target
  
  JaffaCakes118_61c150ab2f4344c7096fcc673ccbc658
- Size
  
  664KB
- MD5
  
  61c150ab2f4344c7096fcc673ccbc658
- SHA1
  
  13bdf5df5e1abd801da31e1ac9f44a9ca77e9a78
- SHA256
  
  e31a1c947d8e470d136959beb047c802fe894ec7f3f3ae5dc0b106e6dc2b1053
- SHA512
  
  0ff602e1e2d89f10da20a970ee314aa01b905095fe4d3df5ea211187f5f95a77932f7b951d536c2853c7f2014cbb1b215c4f3b2073ec4b937f761c53e7ba1dc4
- SSDEEP
  
  12288:22eIlzdXH75e+BzWbSnIvcg3wc3aTvDTbdw6rNFxKf99L5H:beIxdXle+Bn+3wea3TR3xKf99L
Score

7^/10

discovery spyware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer