ff9141d9293d49c3e3cc363610fb1847f23b2d95f8ad38d2b24eee0dc595515d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ea10930a79a1c985ebf5cc5b0f39744_JaffaCakes118
Size

250KB
Sample

240517-f9rlhabg92
MD5

4ea10930a79a1c985ebf5cc5b0f39744
SHA1

f0501b4954b3b22a1591a41217683018885cffd4
SHA256

ff9141d9293d49c3e3cc363610fb1847f23b2d95f8ad38d2b24eee0dc595515d
SHA512

e25e90fc242d822c20d5a98c91595910d2fb7a70801e437552df38e8ced90e96d56ba16a58eb3b9052e9a9e1777331d76fecec71aa43a8520712f5dffcab6584
SSDEEP

6144:P3j1txKGwUVD+Le5dYlYZK6cl07oFV+T8W5dpv9DjC9V:PJ6G/+LwB88v5nv9DG9V

Score

3^/10

execution

Malware Config

Targets

- Target
  
  login.alibaba.com/check.js
- Size
  
  569B
- MD5
  
  ceb4881f528c7b267134f01e9048bd82
- SHA1
  
  939d67ee4ad1157c1687926269a79edd55e1d8ea
- SHA256
  
  70d65607a9e0ff686176051557155bbe8277e9d24f3a67be4f87bedbc55988ef
- SHA512
  
  2931514d073fcd5c08f7c8298181c5f0e1d3ef798f5bdf1d390510908daed5b74264354121c76e40c168721d2d83ec942988be78daddf4a1c89ce194bc26b080
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  login.alibaba.com/login.html
- Size
  
  13KB
- MD5
  
  c683c1712f87f9e5632a351df887f801
- SHA1
  
  a7abac0f88ac145c3aad5fc206bf4a603b995736
- SHA256
  
  9ebe75f275fc851a27976c6c967f63867cedb5727c5396b1f0ce9ac48851fe4e
- SHA512
  
  f64d42d20a9aa789965dadb2471aa27ac4ea9e71ec48bdfd807bc0da964a611b70e254a1754458ca33d80549825f74c403da11ff8f8d23c777d8107eedcb0b1f
- SSDEEP
  
  192:GaK9QMSzqK/Wx7uufdFIW2qHLUbHPvANdMUCqZ7iEe:GaBzqKeIc8W2mgHYdMUCqZ70
Score

1^/10
behavioral3 behavioral4
- Target
  
  login.alibaba.com/login.jsp.html
- Size
  
  14KB
- MD5
  
  f71db14844d78623dd1faac0420fdbc5
- SHA1
  
  19b3fcaa8e7e6d66eba97f8226d879de5d22fe08
- SHA256
  
  544b24dd904b4fda2f481a89dd299d2e864aa21da21219e1b5fdf598aab6d582
- SHA512
  
  3eb55bfbba0c099e1a62d5be2ca70a933799862a92c37bdb20673a68bea03db0fe6c58b52abb2809a10b79ca6652f4b045ce33825d6296b99d83453ce8204d37
- SSDEEP
  
  192:GaK9QMSzqK/Wx7uufdFIW2qHLU1fLhOiHPvANdMUCqZ7iEe:GaBzqKeIc8W2moHYdMUCqZ70
Score

1^/10
behavioral5 behavioral6
- Target
  
  login.alibaba.com/login_files/aplus_v2.js
- Size
  
  25KB
- MD5
  
  2ca539a4bff00db07913a0c53bb90548
- SHA1
  
  de2a4e3b2d7f378f18e2f52cf8fda3d3309bec3d
- SHA256
  
  a380489fa9dab3b53336a837f80e0ed561252fad606e61e9c88b0791a2a0a65b
- SHA512
  
  5c45e3024d6e588165d5bc9dc189f8a494b37aaf686d773cd7561d66e58071fd4c5288835d01abb0c0a2a96cd8f6de398ca18d659d720c8600a168931c3eff88
- SSDEEP
  
  768:nSaWNg8+sYTMVG/dgOHWOH2gDmbWObIB4krIZVA441PdpDJ+wPI:SfKfTM4/d34ImkrIZVAhF+QI
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  login.alibaba.com/login_files/beacon_en.js
- Size
  
  34KB
- MD5
  
  d15c1368035cb620ff5e37b18b28f091
- SHA1
  
  eaaea98e74c82a0515990c2e9b5dc6c6021773cb
- SHA256
  
  f028d7430ea3a9bb9f289213730fd4686c6aa4a7fe61bb38c4b11ca7450a483c
- SHA512
  
  e79685269159d10b1dbf9cb25b2f3b934db8e23a7658aec4d721b90ee12ecee44831ce5c7f80c3e06949da36ffbeb71ddab8bb8e0c92032af13eb28921795432
- SSDEEP
  
  768:D8iSxe4rtWqVPr0Xkrb7vqlpw30wOJOPmhXOQeIsN7XVD5KAF9VW6S7sV/4iPkDn:/SIXkb7yA30wOJamoQeIsN7XXKEW6SOu
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  login.alibaba.com/login_files/mini-login-min.js
- Size
  
  104KB
- MD5
  
  e30917a33d225649acacff964467eab5
- SHA1
  
  6e5a87d5664b82449352d689f90cdac93a78baff
- SHA256
  
  757d47ea8a33ef212ee09589690e19c7f660f781c0193728b099337029a08ad2
- SHA512
  
  152de6373b1a2aa07b9b23c4f38d18f7254795d577ed466bce22591fda93e773c93a5f5a0e98c69a0e048835f87e15fd9b53b753b3ea82b06f9955f1cab45224
- SSDEEP
  
  1536:8hIGG4EYrbSJPAQWSaKTlf5gg2M4O5b7DuKM7G0i33Ky4J6iVM+tEKomzt5mKhUH:wOqWRx2NK+81NGZ1gSzRBPiB
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  login.alibaba.com/login_files/mini_login.html
- Size
  
  3KB
- MD5
  
  2a6c87b066165fac2b7bea62a806f635
- SHA1
  
  9f267e2a69f6b0fd4951c299c5a8a365333b4787
- SHA256
  
  3580ac85027402d5a3cc3ec6c3be512221fd394da58260d7949a63ad4b728412
- SHA512
  
  86fb9c2b50bac57331f4201c6c1e0357ca537706ae1d97891953e41ca8ce4381db9c7681a6d23f9c9327773ccc82c5cf1992dcb5c5ae1c9e2c564eb3ba036e80
Score

1^/10
behavioral13 behavioral14
- Target
  
  login.alibaba.com/login_files/saved_resource(1)
- Size
  
  361KB
- MD5
  
  683115b7346eb052c4e6c061c98e145d
- SHA1
  
  56a430007729715704a7e56e825f5adde788cd80
- SHA256
  
  acc2fc70730f07d7e2de8d0af7ecbfc269f700a59fcbaca384cd3ee0f7283c65
- SHA512
  
  0dc3a64c8965708a9611137dcf4e32a865ecd3234715fa5bb560bf6a44d3f65f5b2d491f079bcd4f9b9a9d12bab48ceeefb47ea8c87c3030824fa2825be090fa
- SSDEEP
  
  3072:ULslSqp4rSzLTOrIJ9q01xjjO4+OGELqiWtu+hsIUftPATHqvMh:ZYqp4ezLyrI/1xnjGe+hsIUftyHqvMh
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  login.alibaba.com/login_files/saved_resource(2)
- Size
  
  13KB
- MD5
  
  cf0b8d0c279b840db88c98a82314e55c
- SHA1
  
  79dded6e6e3ae2a078967f7cfda20c3b2bdbb6c9
- SHA256
  
  c37eaf4048b5665ab6ea184d989b3f7056fbb0991a4c4a55a5edfda56900a0a8
- SHA512
  
  89b34e51995abd47a3fb5b8f0f34248570efd2b57f43a72969e536f1d91270e8142aeb13f603d2d090631d221100ab256c4fc14da8eeea128391e3f84d48f0e4
- SSDEEP
  
  384:XnVqdNjawKxNPVdOTRXVdB/iyt3eZi5VIAoro3XM:XnVqgLVUTRXft3eZi5VI0M
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  login.alibaba.com/login_files/uab.js
- Size
  
  68KB
- MD5
  
  d842979ef054ee692609c57bbcdc751a
- SHA1
  
  16858618b8d0b6eba497ab50b6ec37994b7b7b31
- SHA256
  
  dcc0250087c248b488229dd0b941d0303ef4aadcacd1c0314fe1f2b110d4490a
- SHA512
  
  f0e912d7728d36fe9a39b676f7c739842418893de186e38aaa03b54cc7998e5b07be3a070c6b36e6933bfe3a69488cde4df141fc9d16633424186613edc67d38
- SSDEEP
  
  1536:kfkhA6F8O59ocqFv6gLd/SqCMlscoB7WMP:9hA6D9ocU6gZ1gtz
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  login.alibaba.com/login_files/um.js
- Size
  
  10KB
- MD5
  
  e08fc367aa3c18d7b93bbf3705e17b5a
- SHA1
  
  69158af71478476c8b1a9ffa73b244b2454df3f9
- SHA256
  
  6faea15726db63913d8c7236933a0e8699e67b85c3680f304a4a3dde56f30bd0
- SHA512
  
  0817fbee85e45e8902a69f2f7f6dd38b44c1a0ba507c130f30801ed8943fe764c490457f5d12e5d3beec4e7384937869e118069bcd8fb62aafc0388898b6b87b
- SSDEEP
  
  192:IkNlsdEUz9MCK5ub7m+bbR33gBykxmcvEWENE6E31:IkNlsdF9MCK5o7LHxeQc91
Score

3^/10

execution
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22