Overview

overview

3

Static

static

1

FREE-GBK/a...iew.js

windows7-x64

3

FREE-GBK/a...iew.js

windows10-2004-x64

3

FREE-GBK/a...min.js

windows7-x64

3

FREE-GBK/a...min.js

windows10-2004-x64

3

FREE-GBK/a...bak.js

windows7-x64

3

FREE-GBK/a...bak.js

windows10-2004-x64

3

FREE-GBK/a...src.js

windows7-x64

3

FREE-GBK/a...src.js

windows10-2004-x64

3

FREE-GBK/a...h.html

windows7-x64

1

FREE-GBK/a...h.html

windows10-2004-x64

1

FREE-GBK/a...c.html

windows7-x64

1

FREE-GBK/a...c.html

windows10-2004-x64

1

FREE-GBK/f...1.html

windows7-x64

1

FREE-GBK/f...1.html

windows10-2004-x64

1

FREE-GBK/f...0.html

windows7-x64

1

FREE-GBK/f...0.html

windows10-2004-x64

1

FREE-GBK/f...1.html

windows7-x64

1

FREE-GBK/f...1.html

windows10-2004-x64

1

FREE-GBK/f...3.html

windows7-x64

1

FREE-GBK/f...3.html

windows10-2004-x64

1

FREE-GBK/f...4.html

windows7-x64

1

FREE-GBK/f...4.html

windows10-2004-x64

1

FREE-GBK/f...6.html

windows7-x64

1

FREE-GBK/f...6.html

windows10-2004-x64

1

FREE-GBK/f...7.html

windows7-x64

1

FREE-GBK/f...7.html

windows10-2004-x64

1

FREE-GBK/f...8.html

windows7-x64

1

FREE-GBK/f...8.html

windows10-2004-x64

1

FREE-GBK/f...9.html

windows7-x64

1

FREE-GBK/f...9.html

windows10-2004-x64

1

FREE-GBK/f...ex.htm

windows7-x64

1

FREE-GBK/f...ex.htm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    22c6828e4ba3636d553d82972a89923d_JaffaCakes118

  • Size

    9.1MB

  • Sample

    240703-se64xsvaqf

  • MD5

    22c6828e4ba3636d553d82972a89923d

  • SHA1

    8195aa098409aae087cfbb5899b7d87e60f79b86

  • SHA256

    5a18f78f1249a8d577799e285ecd8fffb1558fcbc069075aaa07b269f9b204ac

  • SHA512

    924619289488029875ed854b3ffccf89c0e8e5c370802be6d2b1550091928049c04256e6155892028977be5f48a00e21c7eb20bd2e2b99152ad6bfdd9d3e0e5f

  • SSDEEP

    196608:ogcf9ZhGg56ag1TRSJm/brcmzVBF/GD/WeTWZ73sf1Cjn0UwNQZg/6X3Ffi+:oRFZYPTRXjr1F/IeeY789Cj0UwNQvX33

Score
3/10
execution

Malware Config

Targets

    • Target

      FREE-GBK/adsview/adsview.js

    • Size

      17KB

    • MD5

      dcd12a996b10957c63b9962419decee9

    • SHA1

      b7311a876be20b75f9e3c56b85f472b078585227

    • SHA256

      40a2d74a6ae6aa8c566d0bb2146729dc7017753db72e4558b85448c0bde7d227

    • SHA512

      b0d666ebe3c18785bb72efed29a4f10fa0d93db7ab41e5e950e71376212a2b0a9c87ab57d9f4ecbbd27acac5030e2d5a6b679e600f911a8f7991bf159cd95049

    • SSDEEP

      384:xCkiXIjau5Y92wI73sgYEDC+auZT019xB9dCwPS:xvYwwI78gZDCLo05Ewa

    Score
    3/10
    execution
    behavioral1behavioral2

    • Target

      FREE-GBK/adsview/adsview.min.js

    • Size

      13KB

    • MD5

      7bb476dc8d07942f7d2333fdfbc9640c

    • SHA1

      184f331bf1effaa6ec86dd071392b235c21daca8

    • SHA256

      56e54808f145111f2e5f05785865eaf2b5723f36ce47e5c9a4f9826e1728c9ab

    • SHA512

      aae4990310bb510559cbbaed785a5aa216022fbb24c947dac223638ce3754fcf6173b355df68f3704853c80527274c91f1d81f2a86f87c49ed29cc92a3336261

    • SSDEEP

      384:xuu5Y92wI73sgYEDC+auZT019xB9dCwPS:xfwI78gZDCLo05Ewa

    Score
    3/10
    execution
    behavioral3behavioral4

    • Target

      FREE-GBK/adsview/adsview.src.bak.js

    • Size

      25KB

    • MD5

      a65a1d13df60d60c57c5bd761a0d3782

    • SHA1

      52e30d8fc6c2dcb52333a6eda53b04ceb09df05e

    • SHA256

      3943c87130a0062dd9db09844e6cba4831fcd63be2fe3f7c0a516f7a0de31b57

    • SHA512

      3943f060599f06dddc930538638d27482a605543bd9c8c548b8f9dcdee9825097e63eca4687e222379affc3ef9549797b086993803d06c99b8c30731b04a6e33

    • SSDEEP

      384:tVQHio9HQW4/yY8aiKLLqChfHEDCM+aLo6IkQoS6FiChQiio0:tSC26/yY20WCZkDC6UM9S5CBio0

    Score
    3/10
    execution
    behavioral5behavioral6

    • Target

      FREE-GBK/adsview/adsview.src.js

    • Size

      23KB

    • MD5

      b1d4f37e687c3ebdbba0b7ecf388be5f

    • SHA1

      3cd4604a8794cd8d33acded0d3da3d6477e14cfc

    • SHA256

      a60042ccbcbe96a18ea485d06869c13fa9ee1a7c297fdf5d6540dd4a6c0baf0b

    • SHA512

      4a6ec371b3dbf2b06a3772173f8576714008a37be41510cf05b9339fea2a5d83ca310c1ee63a3404811dac48e4c506f2ccdfba6c6de675c9ecdbc749ecf71e39

    • SSDEEP

      384:XdMjio9HQWYmKLLWKh9gYEDCMqauo6Zr5oS6FiCUJiio0:X2O2um0qKPgZDC0RaKS5C/io0

    Score
    3/10
    execution
    behavioral7behavioral8

    • Target

      FREE-GBK/adsview/flash.html

    • Size

      1KB

    • MD5

      e2a19737d7d483ce687854625def9d94

    • SHA1

      3f1d2f75fd9ac3a4a0ac0892a0fc982580c63829

    • SHA256

      663581d2b8201c2a1d1b691676ee55d5954310fbf65f1cf876b3efcd75bb056a

    • SHA512

      25cd11e55b8f64a1c0726be87b465919ed0ae0b25890805145fe88027c3ab7311936ad0a80faa065cc4d0b9459e73e36cf156f232b25408c6b6eb989ddf919b8

    Score
    1/10
    behavioral10behavioral9

    • Target

      FREE-GBK/adsview/flash.src.html

    • Size

      1KB

    • MD5

      d851fc4e5e6421ac151bb022b74e48f5

    • SHA1

      f0f5a22d52103e3c44e4df1173e91bfc7d8954b2

    • SHA256

      3d963cd36a6e34bc1598c4150106f3bcdef2edac1f3a6ca15b8b4e6ecfbcc43f

    • SHA512

      77998d970a2a6c95f95c21d150a67743c1d608f92b805e710b691ee67a136181bc4c0cd64edb34496f0c2f72e90e665976e614da415091a82d868bc2da2c0aa1

    Score
    1/10
    behavioral11behavioral12

    • Target

      FREE-GBK/forms/html/1/1.html

    • Size

      3KB

    • MD5

      0a70db4dd833e316a654c8869f5db8d2

    • SHA1

      ce9217c83395061573137ba6a3485d1c8e0fc04c

    • SHA256

      bfc771983b997ac3619c82b6017f48b9f53807d0cf45f3e3fbee871c10acbd1f

    • SHA512

      d42f716d0c4806aeabe1605ee96e33816f64cb94effe070bee2ff0a9e76a41a4f9a2084fffd3472f6710761d7dc7ab20e89303f5bc7f859fb2b4e53211553315

    Score
    1/10
    behavioral13behavioral14

    • Target

      FREE-GBK/forms/html/1/10.html

    • Size

      2KB

    • MD5

      7369b360e8596bf8fcf0222d1bb4f14f

    • SHA1

      2a60d24cb46a2cd4a4087dcee1a268d9bef5f742

    • SHA256

      c99222f4c66102ccc8a74e2d2fed8dd212240b4b0ddded3ab4624be1c9d7bd25

    • SHA512

      d2aefcb4e7c9f5f0af90f83490e72a0bd83d7444f9b51b8daabf72afc4305cd7eea9b4ac96d37ad51c14af8ccebc14a0001489581553793c441f3d06a4357dce

    Score
    1/10
    behavioral15behavioral16

    • Target

      FREE-GBK/forms/html/1/11.html

    • Size

      2KB

    • MD5

      144e86d986c8f8b781916f23598b85c7

    • SHA1

      43b2692faa92ce4cbab400da8c58952aab26fab4

    • SHA256

      889b05bbcf2eee5a6a2f611cb2e3f77383b145e2f573d44ecca2eef08db1e78a

    • SHA512

      3b03e387cec5860621992b0f974fa9c697d6fe7a4cbc414aa64b8a2c4f8eb94b1d0ad0a8822eea10c9515d0605f60e3a36522ba9eef37d82897d9d866552f12a

    Score
    1/10
    behavioral17behavioral18

    • Target

      FREE-GBK/forms/html/1/13.html

    • Size

      2KB

    • MD5

      8b968c5ebd12722401651782b7b49922

    • SHA1

      7249b7042629dc3f2a8f80a673d69780edbeb031

    • SHA256

      ed6658efa8d6059d874b1907f3a8ff447187d3e3442ba28b6eba4907a5ecef53

    • SHA512

      38b157fbf72758b99a1bd11c843c05e714d3986868a6d63abfa6c3ce904603c24581ad8f143fca92d9cb39039c39e30c72613d7b80e4599a40b671e16148c607

    Score
    1/10
    behavioral19behavioral20

    • Target

      FREE-GBK/forms/html/1/14.html

    • Size

      3KB

    • MD5

      afd8783a9f295cbd406b627b20826391

    • SHA1

      ada711f0ac71a6c2a71deed11b0092d90fa2ca0c

    • SHA256

      efa62a64643a75fb849ee595161dd89b6c4511cf1ad239802dd701f4fa576ee9

    • SHA512

      d772ed4c62a5fd23405a5f1744153e7efd1ab26ec259a95d1bdeb25ce3e35eb01896b9d3d056caeffad3fc67ef7eba6609ce3541bf63e8e517ebc77cca67f749

    Score
    1/10
    behavioral21behavioral22

    • Target

      FREE-GBK/forms/html/6/6.html

    • Size

      2KB

    • MD5

      8474b5cc6b8bfc1932900ce480817047

    • SHA1

      bcd0de6d28f4894b92874e3d7eb925f7eecec76d

    • SHA256

      666386c21d880fd32a2e509cc202aa11c2c008ac976e9d90545e6f7c258fabd6

    • SHA512

      455938d9824e3b082b1afaf68a9587b9021c6a1fded6cd13ba89b9a15e5ccd0732e45966e397b93502c84559b38f1b14d6e85e752d2c8481089c0d000d570ca4

    Score
    1/10
    behavioral23behavioral24

    • Target

      FREE-GBK/forms/html/7/7.html

    • Size

      5KB

    • MD5

      afa718e73dc4d51bc14dc52d40761523

    • SHA1

      dd464ba198d001c485d24e370aa41f65926ebc32

    • SHA256

      c3254e76b3bb20482e4ef53299bd57ac52eec161888fc5ca684c5d2e1fed3976

    • SHA512

      0be731d442ed7dda97965406be6d2e9246d44cbf00d0a347e136bc57d24465f82946e8248749e007af77047404c9591b1c33d412d144b690fcc71dfffda2503f

    • SSDEEP

      96:zwXUVKtnj4sx0632i0E0bKuRF13d6jUkGEV5PWK5X4zME:iUuPZS8jVTzo

    Score
    1/10
    behavioral25behavioral26

    • Target

      FREE-GBK/forms/html/8/8.html

    • Size

      4KB

    • MD5

      5ce5d1b4a49a83a6308f2ea9849f836c

    • SHA1

      1e907167c3f1b5609ecb99b5817132236321a1a6

    • SHA256

      ef4a6030a8491d81c212dbe838cc7bab77069581da7f6a47a504469cfc4a8d8a

    • SHA512

      f9929024b47cd73768912a0b286942b701c5f07bbc54deed53a539f6ee8d184c16429469800651aed933197b9498cb190849cdf3170cab5630fa1e59f771ad52

    • SSDEEP

      96:zxF+M6/GvG1G5GCG+NrSn/L/UD5dnmjeH5XoxT:3+dOaKl5NeCnan

    Score
    1/10
    behavioral27behavioral28

    • Target

      FREE-GBK/forms/html/9/9.html

    • Size

      2KB

    • MD5

      b53646dedc1acd6b36cc7afe8c87b6b3

    • SHA1

      6aad5d3c8383ba159a8c4bcf5b1a7213eb8f4f3e

    • SHA256

      5aeb725833f90dc0f14641cfccf8d21bd24d656798a8bed897e1cdd573baee88

    • SHA512

      07dfb1725dfb4245674efc3430dcdc7317713781866a373660ac467521e0e321ffd10097300852454438ac5fb134b2df5ae647edfce6c95f08c43d184e6d3935

    Score
    1/10
    behavioral29behavioral30

    • Target

      FREE-GBK/forms/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

4
T1059

JavaScript

4
T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

12
T1112

Credential Access

Discovery

Query Registry

8
T1012

System Information Discovery

8
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

Score
1/10

behavioral1

execution
Score
3/10

behavioral2

execution
Score
3/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

execution
Score
3/10

behavioral6

execution
Score
3/10

behavioral7

execution
Score
3/10

behavioral8

execution
Score
3/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10