2d84228081a20b6921a7d7d36862a48c920da03f87e7475d54d39cc4bb2917c4

Sharing

Copy URL

Twitter E-mail

General

Target

2e2e4ca5c7bb8a36bb96c751714d7802_JaffaCakes118
Size

875KB
Sample

240708-28kbpatgll
MD5

2e2e4ca5c7bb8a36bb96c751714d7802
SHA1

99a7ba4ff94b3b394bf06bc4a60609e2088e5fce
SHA256

2d84228081a20b6921a7d7d36862a48c920da03f87e7475d54d39cc4bb2917c4
SHA512

db0b44b3a4de7d894a9a70351cb6bf34cc6266a63530a6fbca4d33f941253e97f0fdb957dbe752a0580f6e6b2b3067f017ea614d532e5c809e693a4dc12130d7
SSDEEP

24576:k6cQAx1xxoSG0fe7vBROEiLeHPwse206l0PUqBJOdbGAeNva:kRQeodljkLoPwdX6oUqTOpG1c

Score

6^/10

execution

Malware Config

Targets

- Target
  
  50sjv30/3html.htm
- Size
  
  3KB
- MD5
  
  04eaa49719a52239345f6523ae1fbbac
- SHA1
  
  36e318bd57ac2899344f2c0ef7f0a53c512ce3e4
- SHA256
  
  685c1dfa5cf006330a432620fdee515e7a7968c88b8fa9eba80411446860343d
- SHA512
  
  6e3512de5a91ff6e9947fbbc3572f20cbd28dd4e9d33871a532d658ac21048555574576dbe5d962be25d671d2ff2eda5892c506e14044320f56b94328e6c5f97
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2
- Target
  
  50sjv30/admin/CheckPost.asp
- Size
  
  352B
- MD5
  
  72f28a0da075291904353e5c6555cfba
- SHA1
  
  0da7fdaee943cb4a3342f8482bfee7face4affbc
- SHA256
  
  914fc46cbbaca2dc64b1bd61a31c6f726b5f3f389c42cb0fd1b3f37d3f27b454
- SHA512
  
  b7bfa02df34fa26110f260430044285a630e4b0dfdda6c3458d6e08b4406d063c1a3456350afb5b61be09ba633a6d059bc6d06ba140ec484f8b1412c12212b94
Score

1^/10
behavioral3 behavioral4
- Target
  
  50sjv30/admin/Html_MakeClassAll.asp
- Size
  
  415B
- MD5
  
  d17684f6cf6e951788350ce40d6a24d5
- SHA1
  
  3cddbd3606eebf888bdb9d8203560f408850b3e8
- SHA256
  
  348c4bfc885b9250ff279c74e6b19d86ccda7c47ee2fe86621159cb6ce66a284
- SHA512
  
  b63ff1604104669d865c690fac1a103b3d93d2f783b6894b4b619c761c790d72d988914eb0783c81cd2eadf54a5d64ec0e60cc18a2266503db6d7ae69d6d65e7
Score

1^/10
behavioral5 behavioral6
- Target
  
  50sjv30/admin/Html_MakeClassAll2.asp
- Size
  
  1KB
- MD5
  
  25838abe8b7ae5e88105afd05144e069
- SHA1
  
  12522f78672fafb0e12f602e48e0193f92feb893
- SHA256
  
  59f644cf64d9dc18394790e3b6f06efbe2ee061d95fd8d0f04727bb1ab0b4127
- SHA512
  
  404fcfdc321a413470abbb67f38135cd427838a094194e3d87f1d40bc8a9b436ac83e5c6cc214cd7a4cdd53c4dee1b1d60e6697b2cc1a22750ec3ac158e5175f
Score

1^/10
behavioral7 behavioral8
- Target
  
  50sjv30/admin/Html_MakeClassAll23.asp
- Size
  
  1KB
- MD5
  
  8fa6c5cf79638759c42ea1c30f2c1698
- SHA1
  
  e4626a3aecf27c308452de3fa841fe7ccc3d6a68
- SHA256
  
  9d8d1bb0a7af046d9d9ab20caaf207166d0bb1c2b43f3c78eff9889de186a45e
- SHA512
  
  02346867da4a7c75992ded191d59fbaff6f626f39f66837473a04f6e66f96b1e47c2f07188fe64dc6fbadedc9bfcbc3a3340fa70d670cf399fa4d6b5cf2f730b
Score

1^/10
behavioral10 behavioral9
- Target
  
  50sjv30/admin/Html_MakeClassAlll.asp
- Size
  
  1KB
- MD5
  
  e8de20acf39b6766ca12687172d21dca
- SHA1
  
  9a268a6303c861c9c67863b23394f131efb9c217
- SHA256
  
  d263d1d73200a6944e3fbc7897253aa9fdf997962b9b6cb93d4320a03be1da85
- SHA512
  
  6b3b6fc9a46e25d066a54d5203ba64020d0f377c6f2fdc66368dc2b85b61b94a03b715851359e459af4c4023e5e3840d49678e4d35809a62b218e61994c2958b
Score

1^/10
behavioral11 behavioral12
- Target
  
  50sjv30/admin/Left.asp
- Size
  
  5KB
- MD5
  
  25a28b05ae4e80cfcf037a121f426371
- SHA1
  
  c7045d75d6cc1719890facc74850f77a8412c2a1
- SHA256
  
  0a1ba9816dda4911d618e8db76a8856d647bd7dc60fba4c102d5ab04d4f14d3e
- SHA512
  
  a82779bab479ba79c05c55e5c664514e3120f4fc7b5a170772295b103359a6cc32784e1a01a9e06ac106fa59f9468b03d3edfd6dec311411616b2ecc0f941117
- SSDEEP
  
  96:AmOjNCQJot/w/ptA7UTwDKKhnHFS7Dn/EhPRzhnH3NDny6apQV/UbmH2GDH7wcWp:ZOpJot/w/pE+wHaudB/Dm7h9
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  50sjv30/admin/Logout.asp
- Size
  
  94B
- MD5
  
  11f7abdd9bd1438df36edf4e63a1b0df
- SHA1
  
  3060bedba73e6f85c228df39b8fd9c7e043eb755
- SHA256
  
  7df24897644ba69c88c80abb5912566ab30492a4d45207ab8fa87fc925b98f48
- SHA512
  
  474b5ddd1ba75ce416d6afa9605092dce3be1ef589c08137cf4e7196d141ba1339ba095a34b02ea9a47aa0d06d58ad0a55e0740b2fcb6b6c140f21ebcc913170
Score

3^/10
behavioral15 behavioral16
- Target
  
  50sjv30/admin/Main.asp
- Size
  
  4KB
- MD5
  
  f71c16e47a1b93671cf6c0765bc9f160
- SHA1
  
  a945fcd7ca0f723cdfac94c5e8e418e58e5a4210
- SHA256
  
  57d7dafb8f6355867eedc78a3bf51d31c5979fcf136da3aabbba5b360ab7bd4e
- SHA512
  
  057e99fda7d31db20b707b9e5242ae0e1b6e20307e9ee7b5ffc57188118b3c22f31cc3e9dea9a00bc95fb58aab1b325b413a718399571f4595c7993446ae8407
- SSDEEP
  
  96:VhWmOf7yPFdddFNcaWJbn8JUkJ2XJ2G0C0vJCrz+SLsWrKiJyJ81sWrwJCVsWrK9:vjOf+IdJYUA2ZqXRS7s3qa2slWs3q5GX
Score

1^/10
behavioral17 behavioral18
- Target
  
  50sjv30/admin/Manage.asp
- Size
  
  577B
- MD5
  
  5cc2f345690ff5d1025bbbdaf07b8209
- SHA1
  
  78da84bdc857dd6ad3bc5981c44213e0a7c7fb4e
- SHA256
  
  f2f227618c64c022193b4b3db3bf992353c9a54409e110b6adb5129bf649195a
- SHA512
  
  3bf3e0991302f7ca7c677803531a44b58a0a8621794a9962d8704f2846369aae90cfeea9e1f64f8f7ebd7dcb217f2f7d2c96bd728a714c843eb5e732999dfcbb
Score

3^/10
behavioral19 behavioral20
- Target
  
  50sjv30/admin/addflash.asp
- Size
  
  5KB
- MD5
  
  d45df1d5b2b40ffbf89c913abd62305e
- SHA1
  
  32858546bafed0a28329ba9d3e9b7596ebd32999
- SHA256
  
  fbb7d66aec5de8005e47b16912556a3181ebb07f854cc58e7684c635c8990f44
- SHA512
  
  9ec681879b09f40b9cb4da349bdd2f5a3a0474c80b512cda7077d4493eeffd5ae76acf618c6adfd5b4d99e77c2e04f13711434486575798057f1a20df5150837
- SSDEEP
  
  96:4mO9UvgCO5wok39fcx0N2OgrxX2/deWVysgk7UiHxZ:BO9UI7io2Zc6N27SH
Score

1^/10
behavioral21 behavioral22
- Target
  
  50sjv30/admin/addflash.asp1
- Size
  
  5KB
- MD5
  
  21cd597590bc58f5edd7f8e0a4511a95
- SHA1
  
  733a7e9e7a1f5f15a2f18db13d5c35878ee05da5
- SHA256
  
  b9dad6e9cc9a9d24c38d7605daa15ad3ff1ac7af9f71962f2161d76626839f71
- SHA512
  
  9acac3a47870a9b20988daf57ef1013f3e4b90c7f2a4e666e0590c6a1cabd6d24223c9bd537158a897957db26f2a6155d683d1f347e20c7d483e2951d17c2cc4
- SSDEEP
  
  96:4mO9UvgCO5wok39fcxvXNZAGtgX2/dYGRwsgk7UiHxZ:BO9UI7io2ZcBXNFsAH
Score

1^/10
behavioral23 behavioral24
- Target
  
  50sjv30/admin/alldata.asp
- Size
  
  646B
- MD5
  
  a92b5f53e05d2f66dd53bd16eceb4418
- SHA1
  
  49b19c49c812d1dd66213b10ea67523d33aef693
- SHA256
  
  8954079fe4809b8bcf20f7d598576b19c649b69c54e1804454d1d6c4476d4b13
- SHA512
  
  5a00f666ad3022565df9319868fa40f573fda18fee8fbd66d5595eb8d8792fae11446729480824425a6b9c6974db67f2ab88ada9a4077d776bb804aeaaf37fa1
Score

1^/10
behavioral25 behavioral26
- Target
  
  50sjv30/admin/checklogin.asp
- Size
  
  2KB
- MD5
  
  b8563dc389e1ee126b1d7d01a63aef41
- SHA1
  
  578b985e6df68d693a73a054f68701570fab61d6
- SHA256
  
  34d47a7d18216e286d760a79b336ded737ace01c343f04e9158bb456e3a02b7c
- SHA512
  
  96d8d7f5589d7239c4d205a91a113662b6a0bea3c1f5060569a82f18164ef624581e6782370a476a3ce44c115ea040a395e6062ba8c81262412e85a2e19847d6
Score

1^/10
behavioral27 behavioral28
- Target
  
  50sjv30/admin/class.asp
- Size
  
  4KB
- MD5
  
  516374d88efb9fb7a504e13aac40b5e4
- SHA1
  
  8b61a330ea477cc0d0b7cb6ae1ea4021df39aa6a
- SHA256
  
  8da9e34899277720a9f820e32d30f55f6cd21b5c8528b121a061d9d7aaf894bb
- SHA512
  
  e922110e919a9e4b01e94bf165b7db191afec9d529e7b7ded046ae0fba95af5dd44223ab3dac1642e44179d338f83a353819691cc7856a272e0997bedd1e9a04
- SSDEEP
  
  96:YQWmOAzusAD02Uowf9lsqgRg1g7yjHgKNCgr1CrqBkIRWRBnT0HJDgDy+m2W6:vjOAKM2krbfC+/WnY8y+L
Score

1^/10
behavioral29 behavioral30
- Target
  
  50sjv30/admin/conn.asp
- Size
  
  573B
- MD5
  
  65e417a0ed72310499692971a3b62b9a
- SHA1
  
  d2c05379584e1a87c3d3a4fe24161a802f4e811c
- SHA256
  
  c4b5661d02bf86ebcde92d147c13737f38c17f3c879bc046322a6768d69aa135
- SHA512
  
  936199f89bc6c11d9219af71d89e7acd4fae2df29c716569758263d75b57ef16f1ac21913404be6f2fab4f75243daece1a0f85e4b9fc891930129bba15c09a75
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32