78d074b08bb671669675f3373355108f48522b821dcf15a72e3a61945c9c623a | Triage

Sharing

General

Target

3a6a5a006d3695ce0b614c1260b71b0b_JaffaCakes118
Size

670KB
Sample

240512-q2wklaha9y
MD5

3a6a5a006d3695ce0b614c1260b71b0b
SHA1

55bbdadc1c9932c272fe77238f74735596903ab3
SHA256

78d074b08bb671669675f3373355108f48522b821dcf15a72e3a61945c9c623a
SHA512

58ad8408791376d38c5a26ef841e4fc59c3c90bb214e5af1d487196768f9bbbc76b666b94ea99140357c62d302aecae9e70ec52039bd813cf59ba51c148c6410
SSDEEP

12288:kn2xLgU8NDsFLOZrv0ER30ZhYEl8X6/ODSB3j+gM+WbuRl1zKKb+Zh4xo8ivchdb:k2BgU8NDsSMO30LYo8jSkgLWbuPNSP4l

Score

3^/10

execution

Malware Config

Targets

- Target
  
  BlueConcept/featured.php
- Size
  
  4KB
- MD5
  
  a517084b6a81e0bd21724058d760abf0
- SHA1
  
  d1a8a06c1637dcde51eb114b70c01ee7188c6b44
- SHA256
  
  9b18d14ea080fcaa4c7a6052cb43898abea9bf4508f06e098abdab9fcfdf4941
- SHA512
  
  52e9ba6aea23884730d72e26669a2af4ae946cbf8c53c7c21e0fc9450bb790764f7c2cb1c543bd3b1cca5d3cae39b50d48c306e944339aed14b9718623ef8f3a
- SSDEEP
  
  48:pfz1I6fkpTHNEr5f5WZRs4LLK7tG/mnXn37ekmENcjKgBGRNHnM8lvEUyPy:p7y6Mp21haiMQtuuxWGg0Ns4voa
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  BlueConcept/functions.php
- Size
  
  49KB
- MD5
  
  c99af4697ebfe188b21eba7031cd5242
- SHA1
  
  d19920565632358a3cea13cd14565dff5e7fad51
- SHA256
  
  eb13efe157aa17c8163abd85f1f2b29b2d93164ea90a60eccb558ab30891c13f
- SHA512
  
  182612a121041a12e2274001b45db7af4a658d717e024abc3a703a238caf78732af1fa18d7fed89c44d8208e35bbd7e1657e25c76acaf1340078bdf300d745b8
- SSDEEP
  
  1536:IEQ3xZvhrC4y/yT/ENq+PhZXdOvoZ9HcTSmuWvy:IEqFC4y/yT/UOvoZ9HcTSmNvy
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  BlueConcept/header.php
- Size
  
  7KB
- MD5
  
  c50ccaa602adb401c564c1544f9fae2d
- SHA1
  
  938ff9133fc246b5a1cbaf51ea6f59e00419c703
- SHA256
  
  ca50c08331e7347ce6be81d02560c18343915bcbb2607ff872a78d3067edb6ee
- SHA512
  
  af92c211374c7fa60e7e89fc89cb227994396774e1f5d37d5eefad0b999334a3c124227be344dc32be33150cdd6361267b88f780d332e291c94c228a56023677
- SSDEEP
  
  192:uQqh+gogqu17bGKWF4Q547BH5YKdtOLvFwO3AGGMFY:uQqhvFh7bGNF4s47BH5VdtOLvFwOLFY
Score

1^/10
behavioral5 behavioral6
- Target
  
  BlueConcept/includes/widgets/facebook.php
- Size
  
  6KB
- MD5
  
  f7d72829ef2506cc7022f57dabd5ac05
- SHA1
  
  7318205fad20a8abab88ff425b6200cd3bb5bb41
- SHA256
  
  8c45199c073f055cd2388ecf2932f41682236d4bedc973741c158a88d41b40f3
- SHA512
  
  81605d35e07b8113a39eed7396b930f12a2d63302a9bd2298197c82faaf6fc1eb5582e055a1de59602c3da1f19ea78c486115a94344cfdb2ccbc20e805386643
- SSDEEP
  
  96:MLx3eYWOQMHpoNdXQUBcXZyAmQ5+jLzIX0p+ULU:MLx3etdXQE7QwjvIXq+kU
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  BlueConcept/includes/widgets/tweets.php
- Size
  
  9KB
- MD5
  
  02407b9b04b9a738287fbc7bacc0bd20
- SHA1
  
  e99604c628a42eea236b67631fc9a9fd09af9da9
- SHA256
  
  448d0a1dac4827feb966cc790dae86871f4cc48ee85ad38fb296d51a6d8893db
- SHA512
  
  4f0407ed2e9a616a971ada6332f361728d5bd90204df46055b934e0dcae060e2338f5ab9926a4f07d3ca803cf0d7340698e965e8010dead71a45ead35afbe49e
- SSDEEP
  
  192:MqzP3jtW+Rygr7LNYy8sEjsEcOfrTK/fwoeMkRrRs2D13d:j5MjsElDoeHRrRt
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  BlueConcept/js/jquery-1.4.4.js
- Size
  
  91KB
- MD5
  
  a499ef189ccaae187b61d9d943e5fc06
- SHA1
  
  b3c0247dff4655dcdcf3a855f297d953be361efe
- SHA256
  
  e0e2cabd1e15af7bbf8082d7aaaf4473a4d349fd43776d74305c5b030a7bf9fe
- SHA512
  
  fb414ebe9fe65bb0ac23840c4e655addaa54a278ba3939e0c68273077c530c55f04549480fd39ccf3d71c46c9a8462d5aa22707517d4d46dfcba70ea7be6c94d
- SSDEEP
  
  1536:k5RKUpVgklsdruLP/l+0fGzA8gmtasgx/c9Rzzi4yff8qeLvHHEjam7rSnmBn9g+:Ee8bbGzA81+xRRi1Zu
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  BlueConcept/js/jquery.cycle.all.js
- Size
  
  50KB
- MD5
  
  ff5709ffedefcba81afff28ec7294a18
- SHA1
  
  1cbcab2f95f961c7be2ab115fc0ef691d1fbb4b2
- SHA256
  
  ddda4663c15525f1a1a81e9df765e8dffdbfda766cc15de80d8e6376c3f64666
- SHA512
  
  b60a5a0fabd70465be389598ff1b20e0b4f612fe8e66cf8bc89a9397be6350f17c622fbd86841091f8d6d60fda0cb24408899e9cee0499df758d0b7f55500be1
- SSDEEP
  
  1536:3SOefO4Vo92LzBjJtuC6cjLs7ttyDOkmHvbd0ROW:3stuC64spt2YvbyOW
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  BlueConcept/js/jquery.idTabs.min.js
- Size
  
  8KB
- MD5
  
  1367ba7361dc72a2aef4cfab0a00610f
- SHA1
  
  606ee7f3d5bc46138fe2e60ee9373c9d6aa05a94
- SHA256
  
  d6541fbdf02993730fa80b5024ac30ea93f01a0c383924b63dfa13045b275d29
- SHA512
  
  65d6192d588a7cd8fb2cc966c7c21ec975e05dceda5afe30190344186730bc20c2f827f5bc273bc79534ded12a64bdaa576418d39fae6af7569776a3303e4961
- SSDEEP
  
  192:jU0Iv2GSsBun/L0S8Xxfqj1niAciXLRMKgMBJ:jUfBun/L0DVqjlw4LGPMX
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  BlueConcept/js/pngfix.js
- Size
  
  5KB
- MD5
  
  e0a4567b159eb2008e220114de828d67
- SHA1
  
  3c3ce9e57377849eb990ec0f0bf017598734725c
- SHA256
  
  3815e2689c8b672b1f34a9570691ed45a76de7baeec104c51813804ba2031387
- SHA512
  
  278c3f9e243b493160121e88d087f1ba031cf57f9e49f28f528531b1a91dcd1c528fba24577eb905589e07314eaf7c19e03af3f329d1ca034e03e3f129fc031f
- SSDEEP
  
  96:eYbb6TXqs+Dv0KeB/A4KENg3AJ8+YE4qKecD0w4srXUhPHGzy+LAFeeJVyL4pSTk:eBOMKQ/NgQFFRcgCUNHkyY5ejL
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  BlueConcept/menu/custom.js
- Size
  
  499B
- MD5
  
  d84d84de3cb10f593557113272ebc733
- SHA1
  
  aabb4250d7d02546637ab3245fc67cd86e4c4338
- SHA256
  
  19b4607cac9f8a1aab6c93d3cd994cb4b5dbeb3b1b676afb16027d5f170940fe
- SHA512
  
  9413ba1a10850e4bdbe0aa41c5c522bb1dc341f5c4b6ab11144b45adf120b578b76e38790f886fc092b779585e6780ca40e1b63e5cfcf9a8b29fa269a93a7a5d
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  BlueConcept/menu/superfish.js
- Size
  
  3KB
- MD5
  
  8c8070ba6a911bae7047f29e383da334
- SHA1
  
  b7b4fdd4a0aa451b888067ef4b69095cfb40dbf2
- SHA256
  
  3e9fb74061133f9dc6c809fb777bdcdc8e02b6812ad5bf39aad5f6c69f1b96dd
- SHA512
  
  c5d770651a616d9f6ebfc7543f33aab40422dc65eae0c6cdeac741f2f8c26f597ffd8b514145901bd5b29df8d758270b7f0be8187b169b565f08c9451fc7e5d3
Score

3^/10

execution
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22