f8225fd818364ef208d8661b0a4f22ecfed11fffc873d7323e2ef0e3e89e12fb | Triage

Sharing

General

Target

65c479ad53dd17ae89de854e8b97bf85_JaffaCakes118
Size

343KB
Sample

240522-defveaab24
MD5

65c479ad53dd17ae89de854e8b97bf85
SHA1

acc6e6c4995a115fcd4071ec149b0ed4b8fd3adb
SHA256

f8225fd818364ef208d8661b0a4f22ecfed11fffc873d7323e2ef0e3e89e12fb
SHA512

097961c854dfc0ebb2c44ae3bd78f5f0ee836ba1c203e8909cea7b096ee5e1a01c1a68be787974cc1e0a15bead70cbb876bec6a3cd5f544f2ec54df51f44b458
SSDEEP

6144:xYu0WGwh9HAcOcDrlUNQS8jkkFr/2EK2d25jF/ScoZ51KrjxljxBJ2PUeWWTo+Hk:FGwh9HLD5a8jH/2n2AH/ShH1Kx3BJ2ML

Score

3^/10

execution

Malware Config

Targets

- Target
  
  we T/cgi/geoplugin.class.php
- Size
  
  4KB
- MD5
  
  c8ea1e960b48a620c00bc65d525a721c
- SHA1
  
  6e16a7a95436ec6f1739ae80d121e77661880634
- SHA256
  
  533b46938dc1aa03fa2a8a6ab5977fbdc8b115c0b106f921b0fc4ec637fb35cc
- SHA512
  
  2306c31923f47f7b90bf1f7067519e289c5de4aee2f6b4b2f925c01f57acad0b0a30867b7b025a2222b4d23ec390b265299f4bfb7e2c41d51962c609dbd80473
- SSDEEP
  
  96:zQapMrp1cwAzq1Y0qh2iCYqWGXUQaVc96oAeQeLN/YoLQhyiHQG:0apMrS12iGWGXucr9M
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  we T/delete.php
- Size
  
  912B
- MD5
  
  54bc913c8197ab58ee51984d8964f6f0
- SHA1
  
  b3c94aac6d1f14eedf32c73fec16aa7ddbced8e6
- SHA256
  
  a54749397ee50abe485f6715ddc4b882650ffb0c5f7919a7e7a80c157941e7f4
- SHA512
  
  e6425dd03db34bea9f57b17e81f0431410cd60e589d77dc3433afb92e1014b793c44dc9ea829da0de53f54dc5e3f86684379073380c5d35f4425e95b866a7e29
Score

3^/10

execution
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4