29285510b6b4d127892bcc2130da49fd2ca4f9c3ffba3df8e3d0eb43094b7987

Sharing

Copy URL

Twitter E-mail

General

Target

29285510b6b4d127892bcc2130da49fd2ca4f9c3ffba3df8e3d0eb43094b7987
Size

4.9MB
Sample

221123-x2bczsgf66
MD5

98e18b25071cd7ddda10be95dad25c1c
SHA1

092a8704be4f6903b237c6a03c71bdc4b33dbb89
SHA256

29285510b6b4d127892bcc2130da49fd2ca4f9c3ffba3df8e3d0eb43094b7987
SHA512

5683d87c3bd1f31e59bd791a4457c789b3a9d14b0719edcfff27c365279a0c3ab4fb8a94fefde2ec2e6754ffff7766086549ec1c902d582133edbdbc97c0bb46
SSDEEP

98304:pkPA1oBV2y1LcD+u7d7K7V7vUnPVAKXgDik7etF3Zumbp5a9OYxLCAC:y41o1E+u5GJ7UnqaWiIiTY3J/C

Score

3^/10

Malware Config

Targets

- Target
  
  Struts2神器集合/K8_Struts2.3.1.4 利用工具/K8_Struts2_EXP.exe
- Size
  
  52KB
- MD5
  
  8f0c06bad62c31fe80a92c805bcca041
- SHA1
  
  f9da7b503c3996d11466b6d8d83776a1518f1cdb
- SHA256
  
  0ab56079ef06cab2cb921889905f318ebafe1884e85c48092944ade462ae58d8
- SHA512
  
  0385aa451666e9601705a512c389bed94e4f1874aac92ca6195b1b69151af8c5d7501beb1baf7f26d3a454e859a4bbb21f82d3dd6ae492e0dbfe4d9d5a80e1db
- SSDEEP
  
  768:3wG99PKcPOoZQHEZ+/xztCTFcZ1WVu78xz5CTFcZ1WVuQXv+tXkV6ZZZZ2cR:Ho4ObHC+AA/xGtX3ZZZZ2cR
Score

1^/10
behavioral1 behavioral2
- Target
  
  Struts2神器集合/Structs2 Exploit.exe
- Size
  
  165KB
- MD5
  
  98b86152821dd8f0cc82cda35439c7c4
- SHA1
  
  e878c59fcca1ee09a7767749c1bd846fb6e5f14a
- SHA256
  
  a25ddde9761d64a3d756ba2dddeb3713a2e8210586e0073008acc07ab657fb06
- SHA512
  
  e0a9801794409390bac4798f8f54e0834b9767e3dccdb5c6c216a94c791b076a8026e884c78acfd2fad8c86c0568587aa18c5f58fa575a163d2ddc127e04617c
- SSDEEP
  
  1536:EoazJFb/gkXXMlilJzaWRNeWdzaWRNehEQOSczUKR7cuCOo+LkD1MuHySaYf9wn+:Eo8x7mEZ1IDGuHySaParXZUnkqg/
Score

1^/10
behavioral3 behavioral4
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp.jar
- Size
  
  276KB
- MD5
  
  092cf8d78ca88afca2430ecd14342b44
- SHA1
  
  02a415eac5ffb6e04d198063850f494c87ec4bb4
- SHA256
  
  bc6d1ef1f00a7b3a02159d66951b599612cdf1c24b368beb07abfa99e0208681
- SHA512
  
  6be5151445cbbf1ef0f35e031c67d6328424e84d9f49c86f1fa120d7ef9728e060c8516eef303402819f881d2646e2aea5b697b360e073eb64a1fa5f7339ad94
- SSDEEP
  
  3072:1ONF9hDuUH7rkamSX3ZKw5TAu7viSDjzkMNX79utwq7q0nE4NCyVJILo5b+mxXd/:dbQRxgdvTvNV
Score

1^/10
behavioral5 behavioral6
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Main.class
- Size
  
  1KB
- MD5
  
  b131da4c6f99773b0e69b6bffeaa61df
- SHA1
  
  384d6076a30750e0d8226f3c087bf2243843a486
- SHA256
  
  8b5fa767ecd68f3056b4b62d1d71f270cc1987a27a5716bfc218762491aa2622
- SHA512
  
  1b393c95199b5451f6c279922f242e2aa0f3db6f602c52b63187474f3edc3f2e51232ee6b27d4eb3e0aa931063df51c26cd08d3532ef4837d56fd4b129aa5db0
Score

3^/10
behavioral7 behavioral8
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Shell$StreamConnector.class
- Size
  
  1KB
- MD5
  
  b6f9d761fe0a65f1a550b82d3fce6340
- SHA1
  
  c6a8d6514c98e37fffd747585f0b65cbcbb6f1c2
- SHA256
  
  a0358d1c64352400dd5a0f8748c20ee3cedb835d576db5faafaee483355a3af7
- SHA512
  
  5a734f344672102f98465573e49e03a40c1650130c6c58fd37049b6b82ffde5069e8cc2acd10a2bce920b0aedfd786d2304d8e2c300316059717503939d20c82
Score

3^/10
behavioral10 behavioral9
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Shell.class
- Size
  
  1KB
- MD5
  
  9c25f8d20e2e8f605f30892e62cc05eb
- SHA1
  
  d08fbcf4914c967ed9d626c7cb3ef05a1b46f751
- SHA256
  
  d1d31b7217ec07f96c777e59152a0dfd32af492b71afe37677b8f52c4ddada72
- SHA512
  
  14a49b521d0377d278d1d19ad360112267385bd02517476057ce086afec6308a6b7b2cc6889490fc3f3a65e9ddbc9f2a533168e9c2537f681f52254d02334924
Score

3^/10
behavioral11 behavioral12
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$1.class
- Size
  
  726B
- MD5
  
  01df9252513d71ecdabeb2d41f2ecda2
- SHA1
  
  c32fcdf6e2b1112c1146635b4bde271800f879a9
- SHA256
  
  1dc10fe8dc12c98e587d633792da45ac40d950c0e8afb3068837b0561323e7fa
- SHA512
  
  dbc55a6152dd3f444f8a5bf7d9921a0462d7df09110f333055435c74a9eaa489c8e156b6c1854f4cbdedf75bbffb37f0129ac2e2c2c2e2598354f19c8a845a16
Score

3^/10
behavioral13 behavioral14
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$10.class
- Size
  
  728B
- MD5
  
  97468c3f1beaf5fe1c09b6843bc5e9be
- SHA1
  
  04a755bf0ffb83c29d0d7676fbcc8d99cdda943a
- SHA256
  
  a7ba9e1e5becb280908ab1facdd75928a8dca99abe35ce9c820374e2b2d63ba6
- SHA512
  
  4be26f29dc25d5c7a94788c1950e2f043e56b13ff1b61e1c3b08d6f69dcc00d25e1163d05f5b22bfcc728e4a79b4530493647cd6dc125cabad1383acacf6d1be
Score

3^/10
behavioral15 behavioral16
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$11.class
- Size
  
  729B
- MD5
  
  fe02559d229cc10b487fa112a666e709
- SHA1
  
  c3052321e614abe8c2f6180ba3dff8c256c16e3c
- SHA256
  
  7d4ed398a89769b717037d0426cbdec45ace6beba2e3a7298c4196d332b451a5
- SHA512
  
  51e6d950a278ac8b3ad155516ae404409d260af83d1f0c4a4788305c20c056a79c3c1dae779c3ad49aa6ed16d0ec712a51e67b1f737cdb56b6cbb819337ed7fd
Score

3^/10
behavioral17 behavioral18
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$12.class
- Size
  
  729B
- MD5
  
  3a506043babc1d0b3cbc2c5dbbcddc6f
- SHA1
  
  ba317677c3950c07df32fb02157c73bed9c836f7
- SHA256
  
  a435d0039c4ef201f56d0e6d4ef3a7372deae499b1f0849953181882b23a7513
- SHA512
  
  f839dfb39b1be1c8ad1d2a8f80ab94f1c397b4a16655f3f4bb307d937d20feedd0464d367bec19b9144bb2175a819a8734b81e1182cde2664a46cebae5e5cd42
Score

3^/10
behavioral19 behavioral20
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$13.class
- Size
  
  729B
- MD5
  
  71c7e85c1098880267390a18a1d28fda
- SHA1
  
  3560783929969d2f075aeb4c4a0b586bc682f129
- SHA256
  
  38f6294a64799df4eb02351688d8ae4596109b7fb4f2a3c55aa2b4ff53f1896e
- SHA512
  
  233e0bc5a5e5b1fdc81340e1f845b09d60b14d67dc4918cd9b96958b86be6120e516e73da7e45159fb3ac8736fec2351a585675c531469171381109b10c4efb3
Score

3^/10
behavioral21 behavioral22
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$14.class
- Size
  
  729B
- MD5
  
  4d638235ebf94977278e2c5dd744e0b6
- SHA1
  
  7245f7490483795f9d3f2a3d228285de27dc94ec
- SHA256
  
  56784050c4c8d8a41cbb84b5fc13d8217f0eae8ff565f8cc7d24ff91ada71902
- SHA512
  
  97eff09aa3040ec26e2957736dc29acd2d88ab3827b93f9aabbbd9e7c97cef148d146c0bc6476ea34e428facf2d84dbb2788ab1cbb873637c5e76c17c4a7abac
Score

3^/10
behavioral23 behavioral24
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$15.class
- Size
  
  729B
- MD5
  
  54f63829e27a17e858c88597c93a58c0
- SHA1
  
  abb130e83e0d07b7c4981bcb104e1b5558fd64f9
- SHA256
  
  f1ab3578449b5c56d67a91003922f80cd08069132eae4f217dc4e13012a60140
- SHA512
  
  932ca0d864152117514b6e1fe3ac80fa069206d44f1d6aec33ee9222f3276be0bfe2149837690f0d456ced82eda5b0a56ae524492d350a79bb45dce4b91af27d
Score

3^/10
behavioral25 behavioral26
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$16.class
- Size
  
  697B
- MD5
  
  e01e04dcf3deee8d8bd9d5e1bc9d2592
- SHA1
  
  dfadeb8434c9eda3132f2464a55fe6c1a443fcf7
- SHA256
  
  3802fe28ca5844b16e6424ce0d6796626f884e3e49108a5e2f7f2d322caf7400
- SHA512
  
  68af6eef91e9c0687a85ef283a5e89ede1f6d1d2818b9fec07714c04ef71150d60c09ab99b39bc1edebd9dd3ce8cc3b83524dce846c0252832ff2f3f53fe0cbf
Score

3^/10
behavioral27 behavioral28
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$17.class
- Size
  
  687B
- MD5
  
  a727a24c5075facb2bb89f1832b807c5
- SHA1
  
  ffd7661d5fde320e0d04b29e3e58ec04e3da8c5d
- SHA256
  
  d56e8529a83bf5fc98c23288e7f2a87261c2a835e975bea1dfb4a538555fa997
- SHA512
  
  ad974de2c9c512addfbc6b289433a0ea0ebcec7786453ad41da5eb96eed987c479128b27593cba45193462bd79083d5b41c366ae83865aab4e4deebe749af8c1
Score

3^/10
behavioral29 behavioral30
- Target
  
  Struts2神器集合/struts2漏洞利用/Jar版/Struts2Exp/Struts2Exploit$18.class
- Size
  
  697B
- MD5
  
  1553fb1a89795b0421d2b4a8070f1c52
- SHA1
  
  5d53dea3d8fc8939fa8f0421812d551bdf32be78
- SHA256
  
  087fb2a4275ee727c7bea93aa54b9fcfe5a37156088f530afc7a27874499d397
- SHA512
  
  a2403972a780aa6160aa56130697e4081e9f9643a1c48e7e0e40d99d1ffb8d0e51a45ffcb0070ee32d38aeb228aedee1bf74bde8d7b489a3bbdb52a8b710a386
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32