Overview

overview

3

Static

static

1

upload/cit...se.ps1

windows7-x64

3

upload/cit...se.ps1

windows10-2004-x64

3

upload/cli...ent.js

windows7-x64

3

upload/cli...ent.js

windows10-2004-x64

3

upload/cli...ex.htm

windows7-x64

1

upload/cli...ex.htm

windows10-2004-x64

1

upload/cli...ex.htm

windows7-x64

1

upload/cli...ex.htm

windows10-2004-x64

1

upload/cli...ass.js

windows7-x64

3

upload/cli...ass.js

windows10-2004-x64

3

upload/cli...ex.htm

windows7-x64

1

upload/cli...ex.htm

windows10-2004-x64

1

upload/cli...ass.js

windows7-x64

3

upload/cli...ass.js

windows10-2004-x64

3

upload/cli...ass.js

windows7-x64

3

upload/cli...ass.js

windows10-2004-x64

3

upload/cli...app.js

windows7-x64

3

upload/cli...app.js

windows10-2004-x64

3

upload/cli...ase.js

windows7-x64

3

upload/cli...ase.js

windows10-2004-x64

3

upload/cli...che.js

windows7-x64

3

upload/cli...che.js

windows10-2004-x64

3

upload/cli...ain.js

windows7-x64

3

upload/cli...ain.js

windows10-2004-x64

3

upload/cli...end.js

windows7-x64

3

upload/cli...end.js

windows10-2004-x64

3

upload/cli...ex.htm

windows7-x64

1

upload/cli...ex.htm

windows10-2004-x64

1

upload/cli...isc.js

windows7-x64

3

upload/cli...isc.js

windows10-2004-x64

3

upload/cli...ote.js

windows7-x64

3

upload/cli...ote.js

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    01f7c6a3c3405bce9d27f296b064084b_JaffaCakes118

  • Size

    8.7MB

  • Sample

    240620-cpdmcstard

  • MD5

    01f7c6a3c3405bce9d27f296b064084b

  • SHA1

    2844126c8132d61369cc456e439ad28c9ec5a49c

  • SHA256

    ddb932bc98a46df69083e98c3f41b1a5b39adec26c0a36e07b8f608e8b6773c5

  • SHA512

    99cd01491706a28236511df10ea7c20efbd1305742b5344494e864247a931bf484cb1d87d22957bceedbfc72a8dda042bb84f0bbe0985a2082207de0fbb798bb

  • SSDEEP

    196608:OTOg6EkY8cFVf//NDGtNCDtsAFNaKKqZprrZ4a+tO7:OIOFVf/1GTCGENPK2prr4O7

Score
3/10
execution

Malware Config

Targets

    • Target

      upload/city_data_response.php

    • Size

      47KB

    • MD5

      c404c49f85fcce80969bf90d4cf65384

    • SHA1

      29c4f5d45f86c0875cc1647e88a8052fef09e7e3

    • SHA256

      5a771ee17215b0ba9b3ce640b3bcf4d750aadfac7525aea62cab155cfafaff11

    • SHA512

      03ee0e1b003ab6076e4128ff846f8b68f5f619949be56092a10c2ae1a25ccc06045be20fdd253af9f4b07aa91a7614ec5d8a9eb619d6284924e7353e13f126f5

    • SSDEEP

      768:PXw40hO3gM4MTFqpqfXd9aRIp12/S2pJc6s:R0hO3gMDaIp12/PJc6s

    Score
    3/10
    execution
    behavioral1behavioral2

    • Target

      upload/client/client.php

    • Size

      15KB

    • MD5

      e05b3df9073bdf89a296430137b67800

    • SHA1

      9fdd996ca2df4baabb3af020562e32acb39312fa

    • SHA256

      c1b1214e66ea333aeb795d660c6b0217923c5f6c88e8e2312dcda5cb8978b23d

    • SHA512

      7bbcfea5ef3d2be71734a0415a657c3fbc74759d861eebe74f814555f99918893231d1fc7f379d88a0a75ea343047ad8b33ac412e0d16289fd1c1d78b554e495

    • SSDEEP

      384:Cvfn7Rn+53A3n7vjMVWbtWvefORevpaLNFCKGm:gft+53A3LjMVGkvefOReBaLNFCKR

    Score
    3/10
    execution
    behavioral3behavioral4

    • Target

      upload/client/control/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral5behavioral6

    • Target

      upload/client/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral7behavioral8

    • Target

      upload/client/lib/db.class.php

    • Size

      3KB

    • MD5

      fd7084c1f681c9578391a531a4b740dc

    • SHA1

      ecf4eec61a09efe5d760585b3ed6a1a7f0107e4d

    • SHA256

      7b65184e0a3e063515186b4f0baef62517e471776f5162a34b98a1ec9e12125b

    • SHA512

      de19f8b6f21cfffaac94ff17828609d8c59c839542649d11267f957a75a0af219343749323c97e624f342907e5edd421857959773ee090b5cc5094958a376323

    Score
    3/10
    execution
    behavioral10behavioral9

    • Target

      upload/client/lib/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral11behavioral12

    • Target

      upload/client/lib/uccode.class.php

    • Size

      4KB

    • MD5

      3745e7a350b1b4fbbdd124db3053b8c9

    • SHA1

      77a38f780fa8ef7201d06768617642c0b727359a

    • SHA256

      26c3a22a707e704f36782a9a66536ac906fa6673bc8a1f0d733a245fa9e26741

    • SHA512

      13ee162c0c67e4a7866ec9ca52815599ce65186213e90370cfe7d8e67257337a7d8304041fb410577a6493755126cdd7c5b910bd813cd53c41fafd08d0e3dbdf

    • SSDEEP

      96:N1F67yi+k/Gi0fiGo22RaXhtgVG52vS+omKZR+XM9lWdar778ba+pTOK0egd3:LVpjqGd2RQtgVG5AvM+817g++pTs33

    Score
    3/10
    execution
    behavioral13behavioral14

    • Target

      upload/client/lib/xml.class.php

    • Size

      3KB

    • MD5

      eaeb4f7ad334a04956cbe2d25dd7b3ae

    • SHA1

      2cb4cd66c7ae8001c5be99b1a480ac1636abe8aa

    • SHA256

      453fb8d6308ea083535bbab4f20910d7404200be2af4658b4c9d7d509765e36a

    • SHA512

      f7560ce82993ea2a34f9fe168d1f94378a30d30c9c9f5a7a15af3e8621108a6ca881ed39fb8a03b4053cbdf6db3c059de19ff5fb7e7f568a401cdd73b38dfab3

    Score
    3/10
    execution
    behavioral15behavioral16

    • Target

      upload/client/model/app.php

    • Size

      537B

    • MD5

      5818cbc8c0abd1cadb021136c567a64b

    • SHA1

      d7a50ce51bdbca15e9203bb5b70a4a7418f8bc32

    • SHA256

      794590895b217eabb1b51e3fff86bdc35ba47712f349ec02efddf0d33b293b97

    • SHA512

      5d002600e7318d8daf89832ab79cd729760221c42a72216d484f797ae50e3e49ac76358df4abfd5f8fbe26c9616c401b1a0cc362712d9ed6fa7ef2e6b33469f0

    Score
    3/10
    execution
    behavioral17behavioral18

    • Target

      upload/client/model/base.php

    • Size

      4KB

    • MD5

      66776d2ccf31e775ec7ddabce5b945c7

    • SHA1

      f434180e4e422414d6f25ad720c7064e95915614

    • SHA256

      2bf5838943738030aec28290a731526b7a628424ffe7035603ab406459e3fbca

    • SHA512

      2ac2e14b7ee5c8ec2c39d3aa4d384ec6b590564ae405f7378e117a4cc1e5fa0535fbb38cc36a2a119ddbf633efc7a6bd8daaf05a7490c234c5c79b01143a6943

    • SSDEEP

      96:NfgWwwbxtIWW3L7pUilV11zbiDpg/VUxcYmVl1/BQ6k:eWfNt5QK01f1YSBzk

    Score
    3/10
    execution
    behavioral19behavioral20

    • Target

      upload/client/model/cache.php

    • Size

      2KB

    • MD5

      f24cb0ee0ba39b15f4bce6cfb77a4143

    • SHA1

      463fc17d424d4fbbca1a671088a543e9ad71f087

    • SHA256

      451bf64ab5de94a852aa4314ced1a0424a53e6af725796f0fe147cee7684f45b

    • SHA512

      b8d9b9efff203e886425be9a9c7c7449b777982e70e7a9439a1aa7dd51677ec3305f9a345d9c0769b19009a9b9c2037d97c8a46d92f92d4c40b060b7ea756dc8

    Score
    3/10
    execution
    behavioral21behavioral22

    • Target

      upload/client/model/domain.php

    • Size

      1KB

    • MD5

      6b21963d690e7e2ee01a47358dcffd59

    • SHA1

      76e5dba9c48868dc4c7468e2c19f2b00116a2212

    • SHA256

      436ad8dea1ca43ce4d1091a4796fb7ca4e6f1505cc827df64c7c6ef57bbf4126

    • SHA512

      e919bd901a5a0d78da48da88dd5acc007e2b86d8f3c55efdebfdf2889f4d5867f756ef6501ceba4601ae5bb9a01854b5fe39ce057cfcc770727b7d8c62d698f1

    Score
    3/10
    execution
    behavioral23behavioral24

    • Target

      upload/client/model/friend.php

    • Size

      2KB

    • MD5

      35307a95df2b0c6d35747472e3e66761

    • SHA1

      7c0a9d356ec13cd268d855ea82362bfc5d23fe38

    • SHA256

      2f6d4da08885136979d53ee9ebc7976e08ad5c503df8d5da54d0a1096dc23d82

    • SHA512

      e5f8f04a42f4a1864687d1c1459f73665b5cf91148464e6a351a71e330ef718c13e3b758b3d05f9b445c888e6eac1a57892b48e0e192c30ac101a92121e2b4d1

    Score
    3/10
    execution
    behavioral25behavioral26

    • Target

      upload/client/model/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral27behavioral28

    • Target

      upload/client/model/misc.php

    • Size

      1KB

    • MD5

      86fdce700aac2ac34a7a6cbe81c40127

    • SHA1

      2da78a14d03c35894f4d029dd2a6b22cccb2dedc

    • SHA256

      b215ed1e9922c19a83a43e9bf273ac41fe0d75ec278b1944007d9a924801b370

    • SHA512

      57b09471a73fcc9cdb68c111a117a1bef7d28b2834f3377f94098f5df56bb6c1036aaf23d64769d0c7ab0b01de74d80286108467cc62c8173665d6325a3ade06

    Score
    3/10
    execution
    behavioral29behavioral30

    • Target

      upload/client/model/note.php

    • Size

      5KB

    • MD5

      9ddbc524943dab60ffe54697dd574ac1

    • SHA1

      26bb2af2abe6098e3cfd138061395fbf19352778

    • SHA256

      9a5620a3ab5c8eed223b74cd71f5735ad77a578f23c05a5d3e3070ce4d0a6545

    • SHA512

      77e8ef805e4c7758807dbdac5b351f057d78002816d5ca48978a8ff7fceb34db7f3fb4b77cc43a63bf2a4eb1610b776703c090e941bf065048fded7ae93c58d3

    • SSDEEP

      96:Nh0wgdWFmI+eHif8WozlsLqTHTwN8s8r8hWIo/yV6IhZi2afuEMIKUUrORhmFSCJ:EwgdWFmI+eHif8WoxbTzbsvWQZ+M6G

    Score
    3/10
    execution
    behavioral31behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

12
T1059

PowerShell

1
T1059.001

JavaScript

11
T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

4
T1112

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

Score
1/10

behavioral1

execution
Score
3/10

behavioral2

execution
Score
3/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

execution
Score
3/10

behavioral10

execution
Score
3/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

execution
Score
3/10

behavioral16

execution
Score
3/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

execution
Score
3/10

behavioral20

execution
Score
3/10

behavioral21

execution
Score
3/10

behavioral22

execution
Score
3/10

behavioral23

execution
Score
3/10

behavioral24

execution
Score
3/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

execution
Score
3/10

behavioral30

execution
Score
3/10

behavioral31

execution
Score
3/10

behavioral32

execution
Score
3/10