8b3dffac01cf0400ebb94934a55900b1c8a128ac0cd861cd3923bbf937ecc566

Sharing

Copy URL

Twitter E-mail

General

Target

faa019d7066f9ef2c41439c43398cf5f_JaffaCakes118
Size

2.3MB
Sample

240419-s48n2sha4w
MD5

faa019d7066f9ef2c41439c43398cf5f
SHA1

dad8e9393e50d741164be1148349a6bd1c22f5f8
SHA256

8b3dffac01cf0400ebb94934a55900b1c8a128ac0cd861cd3923bbf937ecc566
SHA512

ba7c3efd079c2f2e5bcff55c856aa7c70ceadfc2d46fb3a95336a727be67fa0583feab13bf88fe5ced062b1a57c2c6fbec30d72e1ece5cb4e8c8dd414168f906
SSDEEP

49152:LiQKPYrbPwak6THwRCkxkQg5NWVZsCBrEPm+NwR2DQdmKn7o4qLwyc1v:LvKPGzzk6THufkQgAVCCBT+CZdmK7tgy

Score

1^/10

Malware Config

Targets

- Target
  
  docs/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral1 behavioral2
- Target
  
  upload/admin/js/DD_belatedPNG-min.js
- Size
  
  6KB
- MD5
  
  849d70044bc54678f4835308534513bd
- SHA1
  
  11ff3e17f13ed3488063e30a36f8b45ca3f5f2df
- SHA256
  
  0b0f022034b3151d8a1072525aa8867bbe262411ca03b9c74eba749c85edef38
- SHA512
  
  b4820e1f96f88947cb5cf5e1ce72d10a7051d4fec51229886c63754af7b05527ce12b1cf8a110eef5aa7838d8dc79e17581bc9f106de474990c950e1324e1e07
- SSDEEP
  
  192:eIwokIf2iY2MhU7SJSMhcU6GoT6krSwwZEdtLsMi2oph/FUKH:Pf2T2uU7SJSMSU3oGvwwKdtfHoz/CKH
Score

1^/10
behavioral3 behavioral4
- Target
  
  upload/admin/js/command.js
- Size
  
  4KB
- MD5
  
  f0e0ed1f632574144d694829262bffb1
- SHA1
  
  a6e8ff3e91027da66a84d93855190eaf81892f16
- SHA256
  
  4e82869268c28bfc4c5002bc635c7995b584f497dda5c0880f23bff933448241
- SHA512
  
  1101ee81a744081d6af867741b706e6097c3a1ba2ada5a05407cfadabe01bea832516d06264fef4e036777ffdfde881fd9847845fa837128144f43d74335b282
- SSDEEP
  
  96:/Fk+0IfuqeXLwX1ErOiHyWnA21SFwpOccfSFwpuwPw0kYvuUmZ4L4y2w:/Fk+0tXLwlwOqyWnA21SCpPcfSCpuwPl
Score

1^/10
behavioral5 behavioral6
- Target
  
  upload/admin/js/jquery-1.4.4.min.js
- Size
  
  76KB
- MD5
  
  73a9c334c5ca71d70d092b42064f6476
- SHA1
  
  b75990598ee8d3895448ed9d08726af63109f842
- SHA256
  
  517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c
- SHA512
  
  b5c7b19a6d0f05cfa33a7f54c1b8075698d922578429789fd4c0a4ce035f563857283c7062e9ab08ec61679b486971f3d83a44135e217e3167e49fada5a1520a
- SSDEEP
  
  1536:oqD4uWibfmaWWfiw7u/m9LofuENlx9TV6Z+T3VopklvQDPj10XQjdA4+9j:opzYf/t9s5vQD6X2dA4+9j
Score

1^/10
behavioral7 behavioral8
- Target
  
  upload/admin/js/left.js
- Size
  
  281B
- MD5
  
  f535a7600a2f539dfd59f468a3c30f9f
- SHA1
  
  10ae57980239b1da5f1bfe498fbdcbf99550fad0
- SHA256
  
  1f9435139b4bc22de29b9745f35f9f02eceedfef58e7b1831d6d3f2ef2c25c74
- SHA512
  
  ab5a873b59850092ed50d59725f9d0325bab86a0f02ae30880ed2454db200071c9d45e2e339c6145a6e54136137e1c15894a15911264e1ab79882415b6776986
Score

1^/10
behavioral10 behavioral9
- Target
  
  upload/admin/js/top.js
- Size
  
  388B
- MD5
  
  ee178d5fd027937891a2cf2004098e07
- SHA1
  
  253b391c3510ca79deebb2eeadaaa00fa990e1ca
- SHA256
  
  5dcb27fef86ac4278eefca69f131ef78c73dfc0d54ffbf950c700a96782c7084
- SHA512
  
  099997d7771aab49edf2aed124896e0f9eae49429c36b6a9f21de5ef67d481bf28a62e725d6da54d18bbb0e495d33358dd6642422f258d1c92f475f8b88727a6
Score

1^/10
behavioral11 behavioral12
- Target
  
  upload/admin/oecms/admincp.tpl
- Size
  
  1020B
- MD5
  
  e94eebd845a23bf2308c6c2c261c796f
- SHA1
  
  36ffdc7cf3dbe99375b61f4bd5a4f7f8aaf2a677
- SHA256
  
  7216869a1f4627fab5774fdc819ccabf9b9188c9465cc773651f9f2471ca840c
- SHA512
  
  758996f85e3ed0ccd0b76758116c2dbb3787a2be59b751540cb60c57efd15ecd18b505adee3f2da605a66de028a85d5aff0614147b5dd1891d8b4c2200908d15
Score

1^/10
behavioral13 behavioral14
- Target
  
  upload/admin/oecms/frm_footer.tpl
- Size
  
  552B
- MD5
  
  b7d367b04f984ffa54f014811d297cf5
- SHA1
  
  de10b98d3b4254442e35918a41a4dd880d484ee3
- SHA256
  
  a0e5e860f40014f796a321676827607eeed6fcb1ca9c8536cedd6de82bbb0c97
- SHA512
  
  b8bba91d3f5747b62444c0134736af3608895819db5bf89c102eccc30d9c0d4964198c1342869c61db5481efa1b2ecce9b261128dedfeafe40d4a5c6f9495773
Score

1^/10
behavioral15 behavioral16
- Target
  
  upload/admin/oecms/frm_main.tpl
- Size
  
  1KB
- MD5
  
  5bca338a72deb6c630de50ce8a3b31a7
- SHA1
  
  d72878eb5b9cc5dc00891cdcdb589a820aa88e07
- SHA256
  
  beba55abf6170a815f4931b742d835ad66c67fece1ea254d3f5f613dc60e7f93
- SHA512
  
  22ad62d2f09beac425d5849542618d806c56377083ad009efd179843b6c5aaf98d19939350bb27167af0d6dcda6d3c6ac330b8ea4ecb6c2ff92a5f3dcd22e6fa
Score

1^/10
behavioral17 behavioral18
- Target
  
  upload/admin/oecms/frm_top.tpl
- Size
  
  1KB
- MD5
  
  7706e13786f0a00a9304df7eb8ed0fed
- SHA1
  
  5ebd49b8aae8a980b7c3b6a28bcd119209608eb4
- SHA256
  
  17af47ace01702524561dad129f0d7d548e4feaf038a7aa7a7208bbfa3b03348
- SHA512
  
  eae9252a1d77fa001337b1a4e908a713e64e1f488dfe13e435668bb62241f2019eb224112dd8943245749dbed41fa9a8ee4d1e2710515a78b70f3817ca72d4a7
Score

1^/10
behavioral19 behavioral20
- Target
  
  upload/admin/oecms/log.tpl
- Size
  
  3KB
- MD5
  
  17fc98131a2f650a090a49bb699056f1
- SHA1
  
  f21b6633d3aca31cfcc3719c78842dcf67267ced
- SHA256
  
  8892b98ef4274da6453c4e8df9dcd8971b54056f914b732100b06b9c45a39bd2
- SHA512
  
  324d1230a4fe3a9feb8c98fe664bc6c3dfd2682b5c4c4e7c3bb1af390f4e69000b570b96aa1b532df4a0623825547ec7ca9895bd8c8165c234c20b05df6d4ec2
Score

1^/10
behavioral21 behavioral22
- Target
  
  upload/admin/oecms/setting.tpl
- Size
  
  19KB
- MD5
  
  32444bde09a70ff4635c9cc00c27e164
- SHA1
  
  4d99305cf60d6dfe3bb3f3e820d6aa713faf6fc7
- SHA256
  
  4d28841e4e809830b399d467e5d90e30ec679ec3089f93be3becc986de10f567
- SHA512
  
  e12a22c6864e5f4ccde39a875b478cb4f250cb7e764e5760d4f5fb2ae3fddc9eeb2994aa6baaa8d874524d269c8b7ea533b1c7ae6ec9c969a305d431743dfde3
- SSDEEP
  
  192:SIJ5uDEwHMjndQ9psWYUrorFXI4IQXWyDgOIyK5yaHe2O3XZx2:SIJ5uDJHMDXI4IQXWysOU5y2C3XZx2
Score

1^/10
behavioral23 behavioral24
- Target
  
  upload/admin/upload.php
- Size
  
  5KB
- MD5
  
  d7a752143b13c641c674db7f1a38b23f
- SHA1
  
  6555662f7f1177eed125293ea7a10c908c693d24
- SHA256
  
  e67a61fe2e1e5c00bea4a3f428bf6bb51a47499c533bdfcaf063237cddf12a99
- SHA512
  
  4960af4eb0af097a80eaeb53a4c3e4072d3b7d4494922091114554b0206323e542c04f6f9be9a292977d48393f8bdc3f6a78f91744283ce169969c621613ee2a
- SSDEEP
  
  96:fTK/5OIwFhb7FP0jKHTR2IqYBNBDk4blvayfDSg6p90p23NRJ3l4UPBEJdddHRQ:HPFM+oIqYPBDfbBayfmZ/0W5N
Score

1^/10
behavioral25 behavioral26
- Target
  
  upload/data/editor/kindeditor.js
- Size
  
  138KB
- MD5
  
  c46cfdf60eb36e3f64931d5170182337
- SHA1
  
  93e60218165dd2aca36104e38b96586d76d7f910
- SHA256
  
  427b8efd1c9f7cb39e946478542401b948fc97d674266e583c016edaeb316c52
- SHA512
  
  5d54f31a8b54690708e4c486b9b8b9c8fe7586bf20a4f3afedf49bff5105f4a293e8aa8adf10038231389eeba984bbfd063c14b839f74b9b852858abb482752f
- SSDEEP
  
  1536:E8z4Im/Movy/W1/5C0e/crSYYqzHMk81CVPtM/WWjhCPHBhKlYYeWo041cUlPtv9:DHXEVEhp7eWo0KfEg
Score

1^/10
behavioral27 behavioral28
- Target
  
  upload/data/editor/plugins/about.html
- Size
  
  1KB
- MD5
  
  69f6f9e12c1c3f8f42893e320c19fa3a
- SHA1
  
  9b5d785f88873e29e915df92ab560fb0d6debfb0
- SHA256
  
  32c6bc9f842cde3d5d65cb0f27fb98dd3978a52086335d66c7c8e2d45aa670fc
- SHA512
  
  797b4ff4cc972ab64c82d6be485bbc57092ca644106e55381af45f0197ef6fa1c4906b5cc6c8a92a0612d0d86542719ed02bffb4aec637674bd4d8e77ef71db5
Score

1^/10
behavioral29 behavioral30
- Target
  
  upload/data/editor/plugins/advtable/advtable.html
- Size
  
  7KB
- MD5
  
  6fed5fad74aa43cb930e7e718fab6ebf
- SHA1
  
  691b5df193593abd1a3a8d43fa745ca0ea0c2618
- SHA256
  
  5b6adac2e22d45e0ac63fa3bbde79ea3fe866bd3e31f3b4fa10c1bd7544b2c44
- SHA512
  
  e00adcc693126c960d86eee12483ce11712150299723260bda38e79f915cb18b5cc17a3d8da187dd6cb56a13e8869ca4274d047dcbd5e9c206adc191610745a7
- SSDEEP
  
  192:WIUOTO35WHJu2/zWlhWQ2ZBpJQJxDMk9i:2JWJu2/zWlhWQ6BcJxw
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32