a544f7a60a06fd6510ece4e5cd6a6a86a1ae3daa7e2af7ac0b45102eb8e566fd | Triage

Sharing

General

Target

3ab61340f8152792d86a437e309203a2_JaffaCakes118
Size

12.4MB
Sample

240711-zx4j3stgkm
MD5

3ab61340f8152792d86a437e309203a2
SHA1

5c8846ab5cee51ead56659f33185c82a48ffe7dd
SHA256

a544f7a60a06fd6510ece4e5cd6a6a86a1ae3daa7e2af7ac0b45102eb8e566fd
SHA512

05b068a1519c13e7db882ffe9b69c8dca3f6891bcb2e43afae9540065f9ea5aee5e54722448a9445a3e6435d90ced200ee17be44fbb1171cb834c6ff957b966d
SSDEEP

393216:2EMRdiUmMhcHBoc6egiO9/O77YT7ko+a+:2XRdiHmcKfegiOpOHQ6

Score

3^/10

execution

Malware Config

Targets

- Target
  
  DataBase/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral1 behavioral2
- Target
  
  Dingtai.ServerSite/My Project/Resources.Designer.vb
- Size
  
  2KB
- MD5
  
  ab6d8c91d647ffb9a3c9818cc23710fe
- SHA1
  
  84dfa0e0c44e26b4174bcdf8f855409698128831
- SHA256
  
  47e33dbae855d3ca75653c5f71fe91a24ec886d1b14b92e15bb1751543ac367c
- SHA512
  
  7e71506b5edc805025ea1802ee01a189029a1bb4319b04b337dfa6e267e8875ba12c83fed38e3197a5e7ef1b4356e06a9cf70d45c44084d01a79823139695d92
Score

1^/10
behavioral3 behavioral4
- Target
  
  Dingtai.ServerSite/My Project/Settings.Designer.vb
- Size
  
  2KB
- MD5
  
  1fe8f00296552df687f563bde966bac5
- SHA1
  
  700bbb5395598578912f67ccafdf43f11faf6ecf
- SHA256
  
  542a8517688301c97f1a4af7a245b141a367bc1663ff41fa5a78c21666566204
- SHA512
  
  897fcce644b63a6f0bbc619d5934be92758e8fd07815cdb2be7adae888911c47036effcdd5d708838cd26ff3f7086891e74909726b0b49a74db80295d9573436
Score

1^/10
behavioral5 behavioral6
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/html/calendar.html
- Size
  
  602B
- MD5
  
  2eba0065b2d4d84d4e362a5b99e66e30
- SHA1
  
  b138fca23d976a6810d77fae626fc705f7c359f1
- SHA256
  
  1ada388bca0cefe5cd0749bcb81e660f626a33b43a39c9cc940645d5b8392931
- SHA512
  
  9cfefb83d2e0cc2a5f8fe1667291aab61b3003a65dc21734c26da7d093f5ea159e5b1270fbcb20fa13dfae15d8c483194aeedbb9d86c70a77826ea1b705d76d1
Score

1^/10
behavioral7 behavioral8
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/html/calendarbottom.html
- Size
  
  95B
- MD5
  
  defbc7de6171b0e8149c4d02ead90c17
- SHA1
  
  ab3ea6497fa13fdba417622864ca6a0eb01f9207
- SHA256
  
  7373c1aa9b37df52f4883ad0d3219fbe06c1fee95316a57d44b8436b5b85584d
- SHA512
  
  0353de079054f96b952d592df5fac2bf70e70e3b6ab09fabd002be89f3fd7dc911c844b5935e09d3c647c57e2e337cb1afd12018884963d9575278b22a67b3e2
Score

1^/10
behavioral10 behavioral9
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/html/calendartop.html
- Size
  
  92B
- MD5
  
  7449d3226ade2ceac638d5b1e3b31cee
- SHA1
  
  0923d4e71d4d5c7ba76b09a93889583c6c6231c0
- SHA256
  
  e127c520ca53789c83605481e46d30f97ecc9907764f9886575100c418d94b5a
- SHA512
  
  c41cd79c8a4bbe5b19c04ce207f1c4f82199709ac868554d2fd979c5268ba93c3314e8528beadea831facc3089aada0eecb1a589cb944193c084c31adadeadbf
Score

1^/10
behavioral11 behavioral12
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/html/crystalprinthost.html
- Size
  
  2KB
- MD5
  
  b901751f2a68599853a7676189c03aea
- SHA1
  
  b2877ad2f96d3fa44800fa9cdbe87ccb404cc6d8
- SHA256
  
  43c88789142c91933bf02d77de42483ed2fb488b9c387366d5ea5e785aa79ad8
- SHA512
  
  4a3e789657cb215a404440116b8535b420455db19954cd7f61c2b1c2cb3b5982b7c429c0f5cf05612acfa379cf984adaba979104b7c2ec92268324c7b2a473cd
Score

1^/10
behavioral13 behavioral14
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/KeyDownEvent.js
- Size
  
  1KB
- MD5
  
  1dd98606b39c181a2be0f04243915353
- SHA1
  
  edd53e0c8d9be25d732a9978380d43c72daa130a
- SHA256
  
  9904ca4cf2b0f38a7976acf8539b1ffc7abd8065bc3865c050a9c07d38bfaba7
- SHA512
  
  a1b438bda2a8844122d826e0eacf26785b85956e492ab1a969b20a4e6664955602c0843c781b0a18af8c05e0fd2e72f761cfbadec062d02a9f007d7e03712ce1
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/calendar_param.js
- Size
  
  22KB
- MD5
  
  4096f9f308586e891ea40778a66be9e2
- SHA1
  
  93c62bd886f95eaeb635fbbb90ba9191e7dd9fdb
- SHA256
  
  9db52fcb9f12d36ce6ab3bfac406f54f600658f834c5b5033c791ba3603ca811
- SHA512
  
  5ad0c0c8a41303a3d9962e5e427138172dc1504f6ea8afdba73c2fc42c8ba988b0ad09c7509fbbd97ca0ad98ef2ccce6a41293e182b374c18c77c63de1bd8bbd
- SSDEEP
  
  192:E7JI0emGz6MN49HoZMC5+onMxKnu1nq5FBDcvHBKBQhknmF8ApzuEPYAMsKkvRAB:UJI0RZsMC5+oMxOLIP5FnSpskxC61
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/dt_param.js
- Size
  
  10KB
- MD5
  
  732bf2fe55e40312b9e3fc1c945bbeb1
- SHA1
  
  49f24c259f5893618e344d838d97631f3ebb6895
- SHA256
  
  e42b582b6bec5a681928cd720d3c249fa0f9ba1224231ee46367d682f45963ac
- SHA512
  
  fe497bf851da0d36440a7ff73193dae4f93420b1f847932ce9d8db4cadcd3987b1bb47fd17efd2bfab16a47834d1076d6743444bbb20306a70690ed984e955e2
- SSDEEP
  
  192:BFxGz8/pMAe8SYpEwqQ+Bo9a7y/YmE4rh24rkqE4VrmE4D024DGqE4hUK:RSYpfr3X/
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/export.js
- Size
  
  5KB
- MD5
  
  523889d45ef14ed8de5454c4d3c42470
- SHA1
  
  468b12440d7c33398f5f1c3b9504257706b6366d
- SHA256
  
  29949cd4775121183c56694d698c2642bae7be5bf8097ac09b1d585775d9a9f8
- SHA512
  
  2a7b6923e892c359fd6537f6eec52a8c592af61c08eea70a68fbc593f242c18c84151b355dfec81918877656526a68b1815e7dd7bb0a713af5bf024a8486d979
- SSDEEP
  
  96:oYWgELFEgjHM85vvY+8XTNiPgdkAFA7dddrDwd8dbK:XWgMEeHMl+8JizIMK
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/print.js
- Size
  
  1KB
- MD5
  
  c8e057a1a2295d6fb70c3b986d89769d
- SHA1
  
  cc2d28c408b5a93ef5417d26325be5e85ccc0f78
- SHA256
  
  9a3e9819158f5a255fa9c3d0b516ea14ea7033181cacf9ed4e6d592aa7e76817
- SHA512
  
  e8c65a99c7864a3756918eaad1864c827c445d9021396b85a37c3dc166c67ba4b0a07b0ff7d25abacd37d0e9625b88dc64c7d13b35c37687d99ba7d80cbe1f22
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/prompts_param.js
- Size
  
  36KB
- MD5
  
  8ab401c0940025b7c80463243c1f2ec2
- SHA1
  
  b3e9d6cc6ce80d0e2f96e6317a2d1568d30f409e
- SHA256
  
  5e943dbaf8e4daf18efc1715bf922c8cbcdda133f3864e89921804ede737d423
- SHA512
  
  8bab1944f4175e1875f0b5e9e616edeec75e4b2a7417fbd8eaee36166a0288073325736c566c2757f7c1cd45bc4d84e64f0a22e33ef3c51d80ace5a8ad60c7f5
- SSDEEP
  
  768:vf+ClYhjYSwe1kZB57wZBIk7xxlSLwobAQUpeSY9zYQquiK3vXKSBErKfp4ka:vf+/10TALt6ha
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/strings_chs.js
- Size
  
  5KB
- MD5
  
  72c632fde80d9f991e8e4dd80d69580e
- SHA1
  
  ef777ae3e125fe9b3ae66cc9f61b6095cfc644cf
- SHA256
  
  ebaadadf25fc6ee8d72c2dd46f06f83b8f1b7ef287c87ec1d2d5cd68d6f5003f
- SHA512
  
  2658f4c9d396d00998d67dda7de9319f55a9dd477c0320c4a89ef874b130ec5b885a1db011720cb94dd86f1b06ad241b333bca404e2f9cf9b68ca0815f4c7f1f
- SSDEEP
  
  96:49eQOpUi8nh1Qlqq564QA+9lxgTJ/dNlyFrnhBjXDXJra3vatra3vwJE3Yv3ERX6:4g/rwo7A938rXhtH8d8vsUmvZnD
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/strings_cht.js
- Size
  
  5KB
- MD5
  
  968aa6702afd5fb4cafd82f0e2fd7034
- SHA1
  
  34dff6023e7e2f11adc4976de8c92a55b92b231d
- SHA256
  
  b95311eb5fb97f1e710fec8e6e9bcfbe080e5423e1601711fc29a1374493feaf
- SHA512
  
  a281852c4762901c4e66303752aaac67720728c7e449cebdbf949738725b7351530f6874e7b709759cc7afaaa258a3f0dc0945de118046749e037120ad1365a8
- SSDEEP
  
  96:49eQ9AIUUnO3FCqOEiq2M97xKxf/dNlyFSWFnoYjLJMHFO8HF6qtL1hUr+xfJb5G:4gPne7AvMY8kqXW4b1J2Bg1PK+Pw8hMD
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  Dingtai.ServerSite/aspnet_client/system_web/2_0_50727/CrystalReportWebFormViewer4/js/strings_de.js
- Size
  
  4KB
- MD5
  
  e2e090194505f650a67caea99a125a44
- SHA1
  
  665223aa637325eb1300a2528bc0abd52f003b0b
- SHA256
  
  a4fd2ad34a473abc593e2b24528d7c77d3887f43f476481bd0ac569b04c36f6e
- SHA512
  
  e5b684bf927b8489f6f5eb05eceeabaf9df60f2c5bcbce645334e73d4d3dda3cf38e6aaf624b382f9fe93575d46ce5c9a6e15dbb57f0db8fb39d56bbaba1ac27
- SSDEEP
  
  96:49enLD4U5anMEW9AqvfA2AmEGSxLlUg/dNvy3V7SWxGVVUGSfmZstjzstjLEmzTV:4ghPP3LOD7aFLSZsls8L2SjLek35LYD
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32