202c0d95606079b4f4ead96b34c80bfcf1dc5b6c6bc5fcfef4263cf14f75d52b | Triage

Sharing

General

Target

60ad0ee360b850d3386a3f2c69e91bd3_JaffaCakes118
Size

5.7MB
Sample

240520-xmpxtsde8z
MD5

60ad0ee360b850d3386a3f2c69e91bd3
SHA1

2c9035d7430ba9656cfa6a131b5c66910284d3ce
SHA256

202c0d95606079b4f4ead96b34c80bfcf1dc5b6c6bc5fcfef4263cf14f75d52b
SHA512

7e0b9e04b35412fb25f306d3c5b30c0cf8a91b82529420e5c4c4ca71822e82339271c770c7ef7acc3d4b8c1e5fbeed9d73a81eecb8b977f3f463471f1d43f991
SSDEEP

98304:XVIrMBYiQc5KQh8xUZ6eb/kR0VVAv1KYiq0Fq06YiQcWZO8kH/tpg77eK96b:FGiQc5KZD30oKYiq0Fq0TiQcWZOt477G

Score

3^/10

execution

Malware Config

Targets

- Target
  
  viewlocation/FMI/index.php
- Size
  
  371B
- MD5
  
  22d6d36faf7bc6bcf927e91d3000c007
- SHA1
  
  a6d98048f821d9d75ceb85fd5f36baa56f02c208
- SHA256
  
  a53039c06d1e497e0d92642fc2eef85e073260d276892d9c01fddcbc57b9b3a2
- SHA512
  
  56a70cb25b8204a4268e5d33594e1ef012119787e23ec077fbbe9217ff4fa998374f161e2c3cf1e2e62e87acdf61e871b3d0051ad233fc61b419cf32a7f3b053
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  viewlocation/assets/js/ajax-form.min.js
- Size
  
  2KB
- MD5
  
  aedc46cd13cc1f51651ccd67ab8ddccb
- SHA1
  
  76411c3308dcc0295d49ff454c1ab0163f45a2c3
- SHA256
  
  3e64ff49e80a840f67b2213fc24731505d7f12cd2c7bf786c778ac663e05fbbf
- SHA512
  
  7bbd6d90c5cdacbaba4edb8fa7361bdad879d4cc439d8d83cb607b585256138e59c0897b92b7bc0bcca8656de26197516bf69ae35b5763e47036dd18e2585b38
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  viewlocation/assets/js/apple.min.js
- Size
  
  2KB
- MD5
  
  e91493ee4d210e5ce1725935c2784421
- SHA1
  
  3f71d420a94ed2a0a9072459c98c64d585f0c8a6
- SHA256
  
  332413a6da14862641238b9cc77eb584dd5a99c9d4acb71ed043361166198151
- SHA512
  
  a135ad9d78347ceae7817f46859ca93195aa2568faa6853e1389e9cdc912552b0e2ef284a7419ede41fadd86e9dc8b39956672e3eaa60ce65fe887eaec39cc88
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  viewlocation/assets/js/strap.min.js
- Size
  
  34KB
- MD5
  
  046ba2b5f4cff7d2eaaa1af55caa9fd8
- SHA1
  
  b3f2ef9f985e7906c9360756b73cd64bf7733647
- SHA256
  
  c8eeec83fe8bf655eeeda291466d268770436dde4e3e40416a85d05d3893e892
- SHA512
  
  02d866a0e7ae7cf36dd5a34e318887a291102a74fbcb5e48786d1c7e860f143eefaef08640820cbf628767e9f7991410487d83d64d42e7c6e7047e32c0dbec75
- SSDEEP
  
  768:N8LJD27UwlNAMlbWqXYR+jS1s8ep0smQirXf8u8GfDZZSQ:iY7NBS1W8v8UDZMQ
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  viewlocation/find.php
- Size
  
  3KB
- MD5
  
  644f8cfe070f278dec3eae1618625278
- SHA1
  
  659da67879bf588d7a520f7121b7a7cec262ead8
- SHA256
  
  3001649b1a2f71ca1fa6f4ab14792ddcb5d6571ab20ea287836bc224f885607d
- SHA512
  
  759643f7b6e2b01a5a3fd7c057726a2a27b348d500e1fc7330b3ddd3099d8de105aaddeac6192179ab0aadd61f5cadbad2260cd9af326ec54b56e43ecaa9e5d0
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  viewlocation/index.php
- Size
  
  7KB
- MD5
  
  67195a8e2a1fe5630ee0b7953cf2a2af
- SHA1
  
  bf5e62162f23ea77b151f2993d1945494f957549
- SHA256
  
  aca61744359dbf2a6e2ff244957be0c419158b49de4933409d274135a60b70ec
- SHA512
  
  f798e3134f600fd9d227d19c9908c530741914dbe265bc27db8eae5a8b7ff6737fa22a86fe073097279427d840d4faeecc8a89c74087ca2f34a21eba71488964
- SSDEEP
  
  48:ixPg9TZSGtiyNCDMrhojUbHt73KqQg70wrwKhtEbaJdIjq8Qecm1q6YGaMl+2Bo7:ixvzjUJLQ7EJdI2nkQ6Jl+26RZLnh
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12