ab58d6459e2efd9a5cab4f96526ceb0abbc17bbb510302a7fe16ee912a788bfb | Triage

Sharing

General

Target

119573ba085d08defc288c184feb6861_JaffaCakes118
Size

28.2MB
Sample

240504-hraldahf42
MD5

119573ba085d08defc288c184feb6861
SHA1

844f69650c11a424286b759b6a20d038f374eb34
SHA256

ab58d6459e2efd9a5cab4f96526ceb0abbc17bbb510302a7fe16ee912a788bfb
SHA512

4b2daf4ea88fd72849f7c0b255ff1fc0924515c026a678149c421483860c71ce8145616a554046e8a36e816c65141720dd27f1c30bb8668d2708be6d997850c5
SSDEEP

786432:c1sg+EIaKxFw6RJbzo5Lxg5BshIIUcq5zxTgAeq:cLYg67bzgwsh85zxTgAp

Score

3^/10

execution

Malware Config

Targets

- Target
  
  documentation/index.html
- Size
  
  52KB
- MD5
  
  5974daf3b2ecd098f23e161a05cdea1c
- SHA1
  
  78fa15080819657eab17bf0073bfcf8deaef3937
- SHA256
  
  cd67add8322e3c8efe2b981ee4726dbf223793e9cbdddc9b74c6a5f72b731647
- SHA512
  
  99a216edc30fc4ee98565823f3d25bfe132e075c5d086c3c789c0f1a9c9fafd9a5b4225ea78384db505c26893566b3f698941baee062051a0870335644c568b3
- SSDEEP
  
  1536:EzLt1S1X+TiRNH77SKJIvguk1fnDawxsVvYS3:ic+/0fnfsVgS3
Score

1^/10
behavioral1 behavioral2
- Target
  
  documentation/js/jquery.1.6.4.js
- Size
  
  89KB
- MD5
  
  ea75b2a8f1b4241a872b1cbddbaed154
- SHA1
  
  18678dd78c1f5a3525127b442bc70375faf09c16
- SHA256
  
  4a62927a380e201c4ee51321dcc1e6b1f7dfbf82049cf349df990629e01e9178
- SHA512
  
  dc69cd4703dcba3c8f4a52058c44a34fa7c0b6096bed20f30ce3dab872461eb6dda9d0d381137b9cb022219ad92ca7f5f25d3964ed33d5f41e9fc05efa5330fd
- SSDEEP
  
  1536:wttlIQq8jYAJohe7evhKHIJvuUO7prb3qJz34yfbvTXYActjaO7UX5X8BKg1hJOw:IJjxpIpuVkRECra92Zp8++
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  documentation/js/jquery.easing.js
- Size
  
  8KB
- MD5
  
  a6f75e0c043a2a087837e5c113cc6f7a
- SHA1
  
  c6f74009a95b2d6f9c7b39ec121a4ca53a490a04
- SHA256
  
  e4273399cc0bc22e58b35f9f79fdf2705a39ddf4ad918ce852f2624e271d8248
- SHA512
  
  422beb65e19a67c231f2a343218966d85d454f743c70fbb0dd44f7b066d3e464cf4eeadca543626268a05de8e430444db31a091c97bf620f1a04e0401b63af7f
- SSDEEP
  
  192:ykIOrPJrLEsq3w3r4ZVoicIQssRcqtEO6o3XRwOrPJrLEsq3w3r4w:RPrPJrLEs0KrioicDss2qtL6onRnrPJn
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  documentation/js/jquery.scrollTo-1.4.2-min.js
- Size
  
  2KB
- MD5
  
  4aa3e2dfa3123d9373c817b77456aa25
- SHA1
  
  1746eba0698bedcab4bc3fc106c51da6bbaa1d65
- SHA256
  
  1cd02bdd539cb152085e4e1583428bcb06c8128a9ec912195f8a42ed8179804f
- SHA512
  
  c3a040e504a3e0b9097756a253758f3c248c48d5be7941f96734bcbca2a649a3664d109ea679e8e9d9562caa6b045e6147b4f5289090376fd9dcfc8a9cc6b628
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  documentation/js/script.js
- Size
  
  3KB
- MD5
  
  403370a94d052ea32fa4e5c9543a8906
- SHA1
  
  7af1aad6e3e23290b27ea9d350da2ce486a41356
- SHA256
  
  4dc4328d26cd6942de5fb5297518ce8d691d5f041c46adbf1e40c3734dd5ec6d
- SHA512
  
  8c26f008f708dd0ef183eb739c3de24d9b8d64e9017dba1e1f7ace9a7d950f74f71e51cf59f7d878b2755cb724f097597ce7bd0cfc4d138ecd3ed3054aa48d49
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  everybody/class-wp-twitter-api.php
- Size
  
  4KB
- MD5
  
  69909d9bd7f4a15b8dc955879a50ec18
- SHA1
  
  6a906ad5e1da58e1a987d35b10c0b9a68dc94e01
- SHA256
  
  c24ee7db5cf681b37fb58b5917df3a597e3c671d138f8e4422eb03e5e13c5fd9
- SHA512
  
  301627420b42c90375fd1ab812826ea6e4257c5c1d44988826b1f15896b1570f25c2dab134e860f14c8b7aa0589cde818f489e2eb4b6bbda096ef38ada60e4e3
- SSDEEP
  
  96:kAt/Alw5rVcPaIEyV/uAbwW+FiaUrfaIEXsVHv4WvM2xQcX6xcV:JKe56aBAMLAhfaEHNB
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  everybody/fancybox/source/helpers/jquery.fancybox-buttons.js
- Size
  
  2KB
- MD5
  
  912548989b8ee7efed9f384365cd8da1
- SHA1
  
  e3ea1d334598a67d29727f26fd86298fcdfb4e01
- SHA256
  
  52ae679913755effd188d92cc1026bcc3bc74999d24b34fca4642d3b15d0c1cb
- SHA512
  
  87f04875cb09f18ef655d5f068eb95339596977f0a7f9512b75b0a8455ea498805ca712a6f84ff058282f009f06694e6b63d20cfa3e31653f6c1c60c1a101b64
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  everybody/fancybox/source/helpers/jquery.fancybox-media.js
- Size
  
  5KB
- MD5
  
  0bb202c2ad55a0d8162dfc732712c3ef
- SHA1
  
  a1a07d92c3c3cdbe03fef6d8d52eb4222cb6a0f4
- SHA256
  
  984c09e727b377032a5aa557b62c89b96ab2245a99f44b6bcb6df5f66d239744
- SHA512
  
  08299363eb698fb5621a746b7b8efac3e9609fe91bafda677df8ebdb2eaafb88af8a20603369d1f025df4e49adcf8163a865b5e6b18fbc3a479de919fdc3414b
- SSDEEP
  
  96:AIeXSEP+Ge+Q5ZTU0Qj8aHEhjLHrChpCdIgQos+bjJ7hFzGDEE0PhPXNvlgEBNjs:4laV/U0QhHEhPHrChUdIMs+vJ7htGD9f
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  everybody/fancybox/source/helpers/jquery.fancybox-thumbs.js
- Size
  
  3KB
- MD5
  
  cf1fc1df534eede4cb460c5cbd71aba6
- SHA1
  
  53e194f4a72e649c04fb586dd57762b8c022800b
- SHA256
  
  0ba02b924fc5beeb370ed64d478401e94a513e970cac2c46266c708348135cf2
- SHA512
  
  3cf213d7701b3a301afb2ef829b5b369bca3ccea1c116a275c0cf51b5a03480a1f754cf69eb9b65c22e7eaf4ffc7fd064dc15337697697fdb5c023759f7e703f
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  everybody/fancybox/source/jquery.fancybox.js
- Size
  
  46KB
- MD5
  
  4edac8a358dd67d57f2b6cf5036845b4
- SHA1
  
  d78b19fca9c93bb5c563bc34e50c5656f88641fa
- SHA256
  
  fe1010932ced6a35aa2b24bcfaf8c10ff01bb0e35b846c1070f1a0f857c18cc2
- SHA512
  
  76c918df13581603bebaab4406f57226df7584c73370353dbffed2257dca4b51a5f3b5dabedea24e4ddb3f7469088dab83becf45dbe91615b4cf8db592667e5b
- SSDEEP
  
  768:7296FqkxIWVSS27DkA7DxDPgsvtrJ68ov6iSOdl7njSgsbEfaKkPD5Upb:77FqkxIWVS/DlDxDE2olgEf+Pyb
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  everybody/fancybox/source/jquery.fancybox.pack.js
- Size
  
  22KB
- MD5
  
  e2112f4c5098e0a07df68f8536d31d1f
- SHA1
  
  3ee291af0f053e3973a2ba60359e4a2132458fc1
- SHA256
  
  1d01cc6cd52787930210904e865e50bbe01a19c17694fead287257aa3b5fb845
- SHA512
  
  d193106c2c4ab64788bcb8816eaa0695816e1f89c647e5564fcce3e5cc81f349ae741388164b6b0b9ab5fdbee3fecb9102bd0a1cc46b354c1a07c985c95e027a
- SSDEEP
  
  384:+N5OeQ2UbfwTsDfmrrrnxY8mBa/CF8TUhlW5X7i:+NcOUzwTVLxY8mBcCFki
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  everybody/js/animations.js
- Size
  
  6KB
- MD5
  
  f91b250deb44859870cfdf797b019e7e
- SHA1
  
  95804cda0983a3e053dd95fee0704e282c1a78a2
- SHA256
  
  c73b70de381b0fe2ccfca3ebf460c656224d56d8579ad79cff78aa7e4da58ef8
- SHA512
  
  5f501e4c32b8afe4eba2987d568943b69fda66919c57893a54be5e27df8f161de3d59e9d2d31569d14fbd0e0182009e5861f67d5d639bbb956e9a1049437e494
- SSDEEP
  
  192:K+++37oO1DqdXxOyZhOHQObFdNHw3eAHO2l6dRFpm0:K+++37oO1DqlxOshOHQObFdNHw3eEO2k
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  everybody/js/background-check.min.js
- Size
  
  7KB
- MD5
  
  801e2df9dfb93b924eb5f74f01dcc183
- SHA1
  
  5726dcf0fb5c9bb050c0d693bee491a2d8ce6554
- SHA256
  
  e0b9fb0a85339d04b557010265887ae2ce835561b00a698a72bf7128b4355eb0
- SHA512
  
  76457d0f06f2ea575cca73978088cf3249dc38b62079767bc7015d36c77003abde3a6fde4a03ffa90333bd9c32647d7e57ae9d0d6197329146a7db2f7036708c
- SSDEEP
  
  192:SoOW6HmCv9vizjjblcfbk2gBh1VQdLjtusrreFcr9PawQUaZc:9OW6XFvifjblcfbkfBh1VQ5AYreFcxI6
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  everybody/js/bootstrap.min.js
- Size
  
  4KB
- MD5
  
  b0852f52b8eb77222164cddcac7ca57f
- SHA1
  
  0c041e54f4af7707998f63357367bb24a08aae0e
- SHA256
  
  535efc5165bf10212941d9a849fbfa80edc9a2dcb5bd9f3c3b04d716ab136d47
- SHA512
  
  1c02e06c2545f0fbef130c5de7a7755adc86aa987b7de8dd31c258e7869ccb607f921dddfbdaa3e5087e500216102c0684c70f5fd680c7ab3f531e10f1e0fad4
- SSDEEP
  
  48:2l5ICBOquoiOMOj3MER6y/67mU7FoLGTOTpUMTdQxdT6XnN/NllYig8fRJQBX55g:2l1ik+S67no+Or1HMC2v7drG5nfF
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  everybody/js/customSelect.jquery.min.js
- Size
  
  1KB
- MD5
  
  e4e5ed6306863dc34649b38b6417da93
- SHA1
  
  9aa3374766f7a6f702998ccb5388a2c249bd5b71
- SHA256
  
  27104a357029e91474f569d86653d7796311ed30e44d4707548dfec1794328f1
- SHA512
  
  7466afeb467af899469ab15e1f584a1df4196a63bcc825dab0aa732bfce8f52a03c140fc29e4e743296d475db1052bc5d977b934cd0966f2d5c3e35c189be2d2
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  everybody/js/idangerous.swiper.min.js
- Size
  
  43KB
- MD5
  
  988f85518f38d1d1ad71f3d7f272e35a
- SHA1
  
  4ba2dda7ba524969b850fd548ce53f35c6e3200b
- SHA256
  
  f99043aa4712e911c346e52754d41616f159426381fb31fbf894441b216f6158
- SHA512
  
  0fea4ac0c881c8afcad7dd1f8ff48958af6bdf9f38e3bc397b8bac4be594ce10e3195f47ec5a5a080d70e9072ff90a34028c296a537150ee4a66fb8668303285
- SSDEEP
  
  768:8XFZ8qXRWglzh92Tvl7prcAgXxwppZ+rTPWRqKDyBu9b/:0ZDxl9kTJuAgXxwLZ+rTPWRl/
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32