a7666607fe4ff5775a535a8df3b98b1705d06d7d20291313f0092fadbb7baa9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

890aca60519b1033d7ca6d1e193ebb09_JaffaCakes118
Size

76KB
Sample

240601-ca85qaee58
MD5

890aca60519b1033d7ca6d1e193ebb09
SHA1

9d8743f5563a16145a26989416300c5d1ff8936f
SHA256

a7666607fe4ff5775a535a8df3b98b1705d06d7d20291313f0092fadbb7baa9d
SHA512

b52fdcd73a5b70d9d56d624c5dc472472dec9e25ac8bd8f94f373c7b7fdd7d56c880618ce6aec2f23dba65dd6a27519433d5feee750094d2bb8c0df4dcdcb2d7
SSDEEP

1536:zddbX4OVYeLweGzv1yhH1F5479o8N9tw6pneH7n2k+WrSP6XdOjQ:5FX4OVYuYSYDtLqEWrSwCQ

Score

3^/10

execution

Malware Config

Targets

- Target
  
  dynamicHomePage.html
- Size
  
  1KB
- MD5
  
  2a2e8da417d99e1978a0da5642074eb2
- SHA1
  
  d00ef1d704858f73b1c0710acab36624e392b720
- SHA256
  
  9c1bad55eae69d32729c46a53562d0d5cc70e2ea82d4ada9c330f372d55caa23
- SHA512
  
  4d8f5b814808140750290f71eb67c0d58f3c49f1ad137d418bb174720ade41a1a35a17388eb34844a8dd57a21a92ab85c42246403244ad034c02941139bf3558
Score

1^/10
behavioral1 behavioral2
- Target
  
  dynamicNewTab.html
- Size
  
  1KB
- MD5
  
  9a28224529a21eb1a3f03fd21999786c
- SHA1
  
  f2f7b24332c0d37072f41112c302eff11b8f4289
- SHA256
  
  8c7843a590a12c601104178cf9c3b29a7ae7f1e8160258d0f2a164d70800c006
- SHA512
  
  eba59ab66d9f594708c9a149c1e9d51e6b2a9067bb73b60891324ca8fcd3a4a4a34d0bf0a36d967f6649636381c1faea3c5493708fde248b5040308f7fcf5050
Score

1^/10
behavioral3 behavioral4
- Target
  
  dynamicPage.html
- Size
  
  1KB
- MD5
  
  2a2e8da417d99e1978a0da5642074eb2
- SHA1
  
  d00ef1d704858f73b1c0710acab36624e392b720
- SHA256
  
  9c1bad55eae69d32729c46a53562d0d5cc70e2ea82d4ada9c330f372d55caa23
- SHA512
  
  4d8f5b814808140750290f71eb67c0d58f3c49f1ad137d418bb174720ade41a1a35a17388eb34844a8dd57a21a92ab85c42246403244ad034c02941139bf3558
Score

1^/10
behavioral5 behavioral6
- Target
  
  js/PartnerId.js
- Size
  
  16KB
- MD5
  
  ecdfb045323e5f31f04689de4223586b
- SHA1
  
  d3b420466fc91cc29a6c721afa9caf8123ce49dd
- SHA256
  
  9a337d2d4cd46eea129fec7e965d7bd7266e13f59139116276fa3d14ec52d0f3
- SHA512
  
  1c618652eda9009647e175e6c48afde7e8149127cc6abf9a2ad35ed7afe0701cfc3bccf28c56dde882421f5631c2c19b999d5d882372f4966a73cb0ea4a21a06
- SSDEEP
  
  192:uHaxTMoZagCYyQiGixFwCdSS66d7Jx141QUyFmENXAYilICBeA5XzC6yMqXWg9Ov:c9N3MX2QUrciuqweczxYncV
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  js/ajax.js
- Size
  
  3KB
- MD5
  
  ec53bce7aaae928062c018d57e99021c
- SHA1
  
  3a4e0fd3efd9a8aedd5838c28f17dff36cc7717c
- SHA256
  
  21b7672424b76daedc613cc9214ca0e3e2bf6465fa2847c293604667468605df
- SHA512
  
  4039a859593d8ce0c30f603bd614430d0b510b923918034f25e73e8e08ee1d4f8ea705e37c24c92a5c33d35722da93fb3c7cae54cc98ced871e51318e127d20b
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  js/babAPI.js
- Size
  
  5KB
- MD5
  
  ca7fc1a168cd532f83bd9fc88550c590
- SHA1
  
  19087a6a00a6a657ee9e0a89236b7b83953b2f78
- SHA256
  
  d0f73eef734389fb1d66561e27612ac6c62546fbc088123e4bf8e093b557251c
- SHA512
  
  176b1e313d9633256d630a72403334d30ca88bb31be2d11fbcbf620f5c61334c395fb1e76949b40107874ce9a0306302b0ce6591ce8bc7baed16ca338d82ed34
- SSDEEP
  
  96:SlkwIjPS9bXZ/XTCu7mdMr7IK5j5XXR/V5HPMMSW3C94QO:YkwITS9tfGugMr7IKf9V5HPfSW3C94QO
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  js/babClickHandler.js
- Size
  
  10KB
- MD5
  
  07772f316e1e74c920600b80bad66cd8
- SHA1
  
  42d72257c0ea737d881c25e0a06d7ad0fc9b506c
- SHA256
  
  392552b79046e3d22e716f277660b7a79e380c1cc686b57a8551477ce58fe3e5
- SHA512
  
  aec169871aca9eed79b7486e3aaf3a6d3617b7ff1ea65cb81f0ef729dbd6474cf6314c2ccf0d4d911149758b54342c1bda28c81539e304e16d84923527da226e
- SSDEEP
  
  192:+Ac6AaifuHq4t4dDn2P7X5KyYINdgRUBvCZSwZwwInYhJ0NxD8DuR73x7dU:pq4t4p2V2CfjYghjW
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  js/babContentScript.js
- Size
  
  3KB
- MD5
  
  54ce5c4abb94247094312930746ab51a
- SHA1
  
  4bb726ec95c6934c82568322301764acd06c97a8
- SHA256
  
  51617c30df40614bc1df836652bceeb4533114fb91f0e1719f873ba642b2299e
- SHA512
  
  3a9a67eee21d26936a4644beb5051eee9565953cee3ee9cca4ba79e28627f9e1afb751c04d44c2b89ada47de65c82751ae6bef24919d040b3071f335993e33e1
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  js/babContentScriptAPI.js
- Size
  
  9KB
- MD5
  
  460c740aababa4d3006c693568870836
- SHA1
  
  585c7155127bfc1fe12989fee123679d310cb13f
- SHA256
  
  55a605cb16d453bec87d5beecb47511697c7d53272935b49000f32da65135bb8
- SHA512
  
  e005336a7b55e72473d52d67775d74fbfda75b28f752777b378fcf7e4f23d83698aed434b55414c458c6c3b6441ed1b2bd3cc35c80152414499e135c674faf76
- SSDEEP
  
  192:6vptSutsGNr9RGFCGbIiU24higWOCZquIz0eIr1K/xmCmQS:GgPyLtUQ0eIr4/x8
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  js/background.js
- Size
  
  18KB
- MD5
  
  0fc22d97f72fd52adc4609c5782e01aa
- SHA1
  
  153800166fe0c4b2a8c69fe1c56754a56d1693c5
- SHA256
  
  0532e2955a773b699507c2fd9ea6f658d4ef49afb9955f914205718ad8e87381
- SHA512
  
  d22f76edace2b3f694bb580d98f27e0fff1947971737633739c8eed927a42720918805bcf035c9a062652642af20b320f1719b3e318fd2f4121717153cfb9964
- SSDEEP
  
  192:zh2oG03HCflv37VdN0tjuDIdt3TXPMeH9ERE/b9rCKKiWZfB5Xy610tCF2GccjSn:zAoG00typEn5i61Tif+n+Mv1XEf
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  js/browserUtils.js
- Size
  
  2KB
- MD5
  
  b40e98f562d87fb345e486d0c36e04d8
- SHA1
  
  90b79e162e7e3e0e0219feaa19da142e3c3ad83a
- SHA256
  
  d8040140097e8f004d4abc69eede34c67bd79a2aeb68712d9e1e729f1025b0fa
- SHA512
  
  bb8517fc5f23a2e666e7a979629e86373cb8cc56bf30f2d6bff9415b7374a16f804875a73479e7f67efdaa1f1db06700629d6fba771701f8a4d58045c791c6c4
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  js/chrome.js
- Size
  
  146B
- MD5
  
  8d9d017b24acaab562ec9406783007e3
- SHA1
  
  8d6bbc12c105132fe88f8b18f2c8335704e64b79
- SHA256
  
  240f8a7ff752ef6f552f131544d2442d4848b3f1c1b72948b068eeaacf1969dd
- SHA512
  
  6e22a2ead5093b5483f8f5dd13578128db12f4b8346285b4d8e511ecb9ce902b2bc4dc06a7fede71a1a9cf90bca7be87ec233c8a80522ae7a0e9c2415a1d6f31
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  js/contentScriptConnectionManager.js
- Size
  
  22KB
- MD5
  
  a901bbcde04e6c61a025e90a50500e1f
- SHA1
  
  bf0488ccab2b23273b221bdfc35c2378215e1eeb
- SHA256
  
  d56a39495216c6b4e87f8f61368dab73e3ced7f7852ea5f9b92e7d42ebbcbe4f
- SHA512
  
  94b59c08313c057bbe0985ed4a3c409dce66551f6f4fadd8d5638d5f055ddfea5b54400d094fb260342fbd6139b71613982624c29beea4e3ded5695144231d53
- SSDEEP
  
  384:YtttdsLfLVIaecCr1n+JtZK674c+hTgMG:QttdgLVIaeDrF+P06OhcMG
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  js/customTabTakeOverAPI.js
- Size
  
  4KB
- MD5
  
  8cdb04562d2980cdcd38072cd65c682e
- SHA1
  
  5f3de587c199157dd34093f1cf4c049f8f433101
- SHA256
  
  8eb1d12093b57a3181df93a49d641e92ec672086e0c60b0522e1832aa139282b
- SHA512
  
  174f86ea1c5da5bac2202d3b0b2a4a285dc25c5afccdb23ec82af3338eefb0e5592697a874481cc029e7868c2e99780db66eb85a6bf3d7f18a74ccab16314938
- SSDEEP
  
  96:/UYmmhFQ/iNUQD6ciHvSOnyFLVtvLsCxv:Nui3eZHvSgmDsCxv
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  js/dateTimeUtils.js
- Size
  
  1KB
- MD5
  
  661eef061ab7e2f7745fe68c4c13f16a
- SHA1
  
  ef994d00e580b13624791ba4018c36f8cecc7538
- SHA256
  
  aeab99b1e8a69c2308a3bc29199b85da001254c0af97113eb7d84d8dcb221beb
- SHA512
  
  21b0e34b06da017b77e48603831756d4a0c21bd6fcbd7fee5fff19ddb61b0dc553ac9632ba7aa755be4861c020a4050a33087ef005a93cc37b9acaa241731ac9
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  js/dlp.js
- Size
  
  9KB
- MD5
  
  5e8d17f62325c9072ce4b7847ef23955
- SHA1
  
  aad49a90c96af8ddd3da8e07f801ecc902f674d4
- SHA256
  
  1f73d873e5dc139c83be2b81f62170af2c0be2080aa79f78f05cb80cb19061e3
- SHA512
  
  1c482c0b9946f14c68509ee26db0b5f49815eb4e30f1a8fae6784ea6cdc7b33c8c46914619ad94a2b9388a5922684ce8fabc6f52d8017290a28ed4f684044d29
- SSDEEP
  
  192:Qo1CAixf/djsluqJCbkEH8cc2tqEWdYh80OKR6Zlyq4k+Iv:QW4wOkd
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32