d48062f03566e41eb5d28ddb6e038b168f36f07b713b922acc14bc540ae28ac0 | Triage

Sharing

General

Target

06cfc887f7dfc0ce1a5253dd5e146d41_JaffaCakes118
Size

809KB
Sample

240620-rr8mvasckd
MD5

06cfc887f7dfc0ce1a5253dd5e146d41
SHA1

f0248965f78bf2619a1de507066ea446050103ae
SHA256

d48062f03566e41eb5d28ddb6e038b168f36f07b713b922acc14bc540ae28ac0
SHA512

18e61823314a3ea1d3049cedf1c5f52c970cd8e8a7f451cbc13c5aed44826d28df3df5cedeb6c6653ecea20e133cf0b607c8fd4b748900c68806461fe110374c
SSDEEP

24576:m71ffSEGRnC+NqTyIJY0fBEayKlAoJd304OTvcj7Qs:m71Tctk+0fBEayKSMdk4Ocj7/

Score

3^/10

execution linux

Malware Config

Targets

- Target
  
  lnblog-1.0.0/Readme.html
- Size
  
  31KB
- MD5
  
  69f940c21bfe600d8d3d20372bbf9fd8
- SHA1
  
  be29a9f8a98e084fa4da651af1dcd89c451de170
- SHA256
  
  1515979b35216d41aab3fada52e6349f2624ebba5e91d999deab9d83f7b90abe
- SHA512
  
  397f3f09c07eaa9fea67b392590fb51c4f376cb4fc757d140fdcdba18a534e4ca18908c1cc5af780fbc32ccf445a336cbc34265c3213eecc6b2339fd689747fc
- SSDEEP
  
  768:ScGdM7kw6sl2r3nw47x+jw6ly+vTWbpchiXlYEvp:ScGdM7kHsl2r3nw47ojwPbqoXqEB
Score

1^/10
behavioral1 behavioral2
- Target
  
  lnblog-1.0.0/cliblog-mw.py
- Size
  
  14KB
- MD5
  
  ba6da32220c1908d83e02ea154ba0ae8
- SHA1
  
  0a4a517f353552c6c37ae8d073479e566f6ef6eb
- SHA256
  
  f89bd3aae650c992b9f9f40d6e33fb976092e98ee37c82a4f8b54de90b26352b
- SHA512
  
  3034a33b54cad5f66ec9a435e6cc15929911a8dc5ea16a024f3dfec982e6d6e7074907082876f24622865a144d60ef1c49d6e778541e74470f91f2eda24e469e
- SSDEEP
  
  384:RIVHQtQEMv2EMTsxKnKurSKiXowHuQsGnX:RI+tQEMvmNSyZGX
Score

1^/10
behavioral3 behavioral4 behavioral5 behavioral6
- Target
  
  lnblog-1.0.0/fs_setup.php
- Size
  
  11KB
- MD5
  
  18a20fc376034ef0ed0e294f61b4de54
- SHA1
  
  53b221aabc58ccf7772e2dc7e9b88ede1348d0c9
- SHA256
  
  5ee6f8d72efe2a01ca776f5585d754b66729c335a8be85d1b245153328b912b9
- SHA512
  
  f125de83955d0b40a7584122d31ef161157f0b3f64a96b177a07085f0c5f599493bbb51ac1a8ad6c44f4d85346d9835bb2079e08c9ce9f677da98af5368214b2
- SSDEEP
  
  192:B5D2f8QqD8Bk0mas/QMDyDYm5fSi7D1LNlmPwSapQ7XQsusbSJIcv6iWusDhFSf:B5Dc8QqKkhasdMYOfSi7D1RQw/pQ7Asa
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  lnblog-1.0.0/ftproot_test.php
- Size
  
  3KB
- MD5
  
  f4ffbee4bcd7a719541cf2776d4b316b
- SHA1
  
  e3ecb507392cb95161a8215a9c88358ef09ca03a
- SHA256
  
  e3ff9357bc09417538b4c9bbd641ed0a7871c34cf64fd0150ba6caf181784107
- SHA512
  
  2a28f0e4df7840c5213314ac9d9ec32eb786cb289171325fbc23d889c5b0cb97fd856f3f49a676d668dc9b37a26d9fb95738ab84aa3a5f810e56ed7ebff199d6
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  lnblog-1.0.0/install.html
- Size
  
  8KB
- MD5
  
  1e7a0847bd83667ab7772855d6ff0688
- SHA1
  
  21d4893af04a3c4ca6b107670ff13aa03c4fc90c
- SHA256
  
  c73d1b366f1fabce3f903b10351afc925e2587dc5433daa8463e4e8a894b4f8b
- SHA512
  
  e2474ed67cca6cebab3caf7618c1d7e565c9ca64df54489dfefcff80924ff3793220e337e76a211ef00d04772e1d67b7de3df1f155e63343828f4e67098e71d5
- SSDEEP
  
  192:SWJjzdH8iuy3yngr0AO21mVe4lvU/u8zBCGcroYZvP2q:SiH7uy3yfAO21WlvWzMVr7ZvP2q
Score

1^/10
behavioral11 behavioral12
- Target
  
  lnblog-1.0.0/lib/blog.php
- Size
  
  38KB
- MD5
  
  de4f3a063c76753d5c1c3e532f839fe9
- SHA1
  
  b9b608d5785f8634b3062b453c0adcb2a21b2fb8
- SHA256
  
  b2b3551db6e00de68b6b5168b0ca193acdcfda2335afa891787a9c6cad270525
- SHA512
  
  02a047ae2e0d22bd81a3f0d4f22aca3eedb7bceba45c68d4cbfbe34d3a93e7db31f3064e957e7e8409e95640847ddcc4490a1ae853bb1e63f6f79d1db640ceef
- SSDEEP
  
  768:B0DpShCTZYJ3nU3apKtJHgzGUKYcPSGZ5n:BRhCTZYJ3U3apSJHtYO
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  lnblog-1.0.0/lib/blogcomment.php
- Size
  
  11KB
- MD5
  
  efb71199141aa9829f8da7b32d21ac0e
- SHA1
  
  588f1ee1c7fd410ab0bf4f1ed4c59d2610ee5856
- SHA256
  
  24a441a982c278f0c689c2fd97c47c57be9810c6d98cb13d8bc47213b2e1159d
- SHA512
  
  f2718e95c9c90a49cea7f0a4822ab365ea91df319d41d6a611055352fe924dc8d4b6ece0dc53da740751f44765210d4595d82b093e3ad4d80ddda81b32691f36
- SSDEEP
  
  192:B0D2RIbXTwAjVNFxubRKyGk3G/QoWK0zFoPJVvr:B0DWIbXTwAjVXtS3eQlvZoPJVj
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  lnblog-1.0.0/lib/entry.php
- Size
  
  21KB
- MD5
  
  7888887127844a5294afa9ea45709033
- SHA1
  
  28e09f0ae6b5e7c2b560906d55e57e675a8dcbff
- SHA256
  
  cc43ac7794be528e60fb314c19354842b644024c8a7089155aad13e9fa6be792
- SHA512
  
  7ee4ed431e2e330fd4ae0c85ef2054542bf007776fafe5c305b3761368c39c4edd573ea3bf51e64689d9c306e1d9724beab7b41c8b409b1026721db093427cb4
- SSDEEP
  
  384:B0DoLbm6uHMhebrFJCVZvMRfUng4kA0nTiTx11bitUoP:B0DoLErFUZ0B6gvVuFbk
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  lnblog-1.0.0/lib/eventregister.php
- Size
  
  8KB
- MD5
  
  4723f37fc1d9feb928431d7b55fbd2b6
- SHA1
  
  0e4b7fdee630b8f3ef151fc8d1f3e1d4e1befe35
- SHA256
  
  e3cf5c55251ea0bab9820af107edc0ab65a995c857fd99ecbd6b518c2f2c255b
- SHA512
  
  53b4a1338c6bf254d33c8ab49135ca451d054ec8a6fc86e2956256c2701f9efaaf68453421cb95c216ab8161dab234ab7d5ff7cd83cc727fc6c5019ab2076ca6
- SSDEEP
  
  192:B0D2KQi8M04xtkYzcSmhMXc4jcJgcy6raBbh0+SyG2vLL8Fg9P:B0DX0arcGcucJgcy6rWzSyG2vLL8GR
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  lnblog-1.0.0/lib/iniparser.php
- Size
  
  7KB
- MD5
  
  e39eddf01f239b75c6fa4ee2b1d53690
- SHA1
  
  219caf752a4c8aeac6d7e47321e443a063c28640
- SHA256
  
  1e0b04ec31c08ca064f76c58561eb3f65761e5681fb060cbc9fc38030c6c1c58
- SHA512
  
  79591c0178ca0c5eebb5f2d67aceab6b2118b10da2845e16729cba03f54f2712cc04f622320b527094d0fabecead56bbc890d1187219969d95a150f72489ca1d
- SSDEEP
  
  192:B0D2kvFaGOVP4bHq2+m3m5jO2B7kHB3hR43G:B0DjVOVP4bqc3w7kHB3hsG
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  lnblog-1.0.0/lib/lbcode.php
- Size
  
  5KB
- MD5
  
  a06f573241365d56c61a4a9f68ca3ec5
- SHA1
  
  ebbf3832ec4331e6a8787f94e1153d23c829fc6c
- SHA256
  
  f05a4188f78249c74eef7cbeefa1d2decf9393f48c69f94b846edd3480f9007e
- SHA512
  
  4cb24e44205028b27db47018d447b12a6fd0a10ee056738a65cc8dd6fb0ec53ff744904bc7229a8990ec0628730a59fdc1b02af451ecfe2aef484a88d5c391e8
- SSDEEP
  
  96:BkIZxLiEg4WB6jMu7fti3E3GMPqjVMayFpzSJKsT7OXt4WB6jMcVHkVigZkDXefL:B5D2/mtifTylpzu7OXrmFamDXc
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  lnblog-1.0.0/lib/plugin.php
- Size
  
  14KB
- MD5
  
  c1b8979b0cd3755eb63c594c511ae13f
- SHA1
  
  0f054a42020c6787d79032b8b6676cc81be7901a
- SHA256
  
  9c4511ba6a255723e63693b57d96ccb289fa750268bcd2d9f33b176d4ae80927
- SHA512
  
  927f748df7b3d19dbfd0efaecd69ec9edb6ee763a9c087d94494a5ea1b254eb96a51c21d1d10cc393278a7c79f4c4349ddb13fde1c9b33b7d6a027879a883f75
- SSDEEP
  
  192:B5D2DwyA3PsSnH1xSEfyNmfsCV6Zg98V00ZH+qDelEwf8nEc48AO9R3P3xWD:B5DMAFEp9m0ZHrylv8QD
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  lnblog-1.0.0/lib/pluginmanager.php
- Size
  
  6KB
- MD5
  
  5d78f43e5ee823a47ba224b724bd0aed
- SHA1
  
  6a1f846f4a4dc531ac2adb123aac0a1cb1776269
- SHA256
  
  3e0539281b4a3996f223ee6c7560eba11efb7cb481f6c12d2dfb488c4fc8f881
- SHA512
  
  65248e55af123db3bd4ea6fe4db711329713314fdf92e60422c73e989f9ffa0bf5b62ac6a363663792d1352428f3f1b613ba63a22650ac383bfc4550bf835fbf
- SSDEEP
  
  96:BkIZxLiG6yDkBdOt5I9gorfxskDbfH8peKxITEXCaj/AI9HT84zaNrUM2xgo3oQ:B5D2nyDsEdorfiGKSWcihza4X
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  lnblog-1.0.0/lib/tb.php
- Size
  
  13KB
- MD5
  
  23fbd9c79bbdb2dbdb64ee86b7e79cd2
- SHA1
  
  31f655b3030af4dd8d9ed3f3d7796e6cacdbeeb8
- SHA256
  
  5d12156f35ba3c5048cc5411827e6faadfd5fc7d9354f49f6364dbf48d387a31
- SHA512
  
  b75d79029c5f0e548a08723ccd8c051095e6db73922cc67bf6adf8633788aa97e96a5c06597488a38fa60ae0701759c4e307a74307b33ddcf750aa2f3b118d61
- SSDEEP
  
  192:B5D2IHk/JAj+5BCNUtBNGmC21dfaZ3rh6vT7lWzdnvgM:B5DQBwUtBNGmd1eIvT7YeM
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  lnblog-1.0.0/lib/template.php
- Size
  
  3KB
- MD5
  
  02881075259e9f9e8e99ca761bd4fb43
- SHA1
  
  a1c71ee52e33ba04955f22ca536a638913a32278
- SHA256
  
  39c97b0341584efdc87863e864430b054052102096e22d0bdad9c6b688ff7bf7
- SHA512
  
  01f57e966902154408f19ec0ea98dc45d4bc65eea85244c536f41c618bf53972413255d9e83cae5073905f3909bb2fca49827e05f9bca5a134f9752e36d6e63b
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32