Overview

overview

3

Static

static

1

北回归�...ut.asp

windows7-x64

3

北回归�...ut.asp

windows10-2004-x64

3

北回归�...in.asp

windows7-x64

3

北回归�...in.asp

windows10-2004-x64

3

北回归�...nn.vbs

windows7-x64

1

北回归�...nn.vbs

windows10-2004-x64

1

北回归�...d.html

windows7-x64

1

北回归�...d.html

windows10-2004-x64

1

北回归�...it.asp

windows7-x64

3

北回归�...it.asp

windows10-2004-x64

3

北回归�...ok.asp

windows7-x64

3

北回归�...ok.asp

windows10-2004-x64

3

北回归�...ly.asp

windows7-x64

3

北回归�...ly.asp

windows10-2004-x64

3

北回归�...ex.vbs

windows7-x64

1

北回归�...ex.vbs

windows10-2004-x64

1

北回归�...nk.asp

windows7-x64

3

北回归�...nk.asp

windows10-2004-x64

3

北回归�...dd.asp

windows7-x64

3

北回归�...dd.asp

windows10-2004-x64

3

北回归�...it.asp

windows7-x64

3

北回归�...it.asp

windows10-2004-x64

3

北回归�...21.asp

windows7-x64

3

北回归�...21.asp

windows10-2004-x64

3

北回归�...ws.asp

windows7-x64

3

北回归�...ws.asp

windows10-2004-x64

3

北回归�...dd.asp

windows7-x64

3

北回归�...dd.asp

windows10-2004-x64

3

北回归�...it.asp

windows7-x64

3

北回归�...it.asp

windows10-2004-x64

3

北回归�...ow.asp

windows7-x64

3

北回归�...ow.asp

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4472e4543b596b26f1504e22328456ec_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240714-fwv2rsxfnj

  • MD5

    4472e4543b596b26f1504e22328456ec

  • SHA1

    4a17a4d398d14ce60a8078ef0371ee8e54725455

  • SHA256

    f8097e678a9c9539e96be5b8d21c493f335f7458baca6e480685efbe55666791

  • SHA512

    5a9f22cc70ae60457073eb3a2d76c703c280ed69c187c7c6e42c990f70ec4827124419d9e5b79c082c55fe33989dd0de9cbeaebb68df18f0053d77b161a5bb74

  • SSDEEP

    49152:WBjIlZBcdLaSpuJ1Xn9JT/d7EBpL3bSkODdaWr1LVsrnH:WRjdLt65n9JTl70ekODsGDsT

Score
3/10

Malware Config

Targets

    • Target

      北回归线2005精美全站/about.asp

    • Size

      9KB

    • MD5

      8edfd20273805677e2336f0688274ab4

    • SHA1

      85c979c8ec6fae08664f9da7beb25f5a8d1bc65b

    • SHA256

      5d79a85f84fe47e4a700eeae957fb5724652956f69228c456d490b31aba954a5

    • SHA512

      39f671468eedae1ca4822018b702d8a16065ee456c783ce7254c8e561060069639a3ce2d14f63a389aea35e261d15278aad619c9936d34d4843cb94864caf2b8

    • SSDEEP

      192:hYXtSoDDJwmtfI1JZfZNjshu+TQteEsPQu64vI5:h9bDNu6nN4vK

    Score
    3/10
    behavioral1behavioral2

    • Target

      北回归线2005精美全站/admin/admin.asp

    • Size

      3KB

    • MD5

      9b865fdc163fa66e411874b53a8fbda9

    • SHA1

      53a38d191118d391571eaf79c4ae969660dec294

    • SHA256

      f30ec8ecee5be84f47ece9eb2fb9326401a59af08961b7583336036fa593907a

    • SHA512

      7eb3ede116187ee71270ba0f0a73c0bd9d4fea776c9c895b24afbe4de8b80771e93183c904645e9a2433e99ef61e9a5b86897147a9de1217ee3f3c330db6f42d

    Score
    3/10
    behavioral3behavioral4

    • Target

      北回归线2005精美全站/admin/conn.asp

    • Size

      3KB

    • MD5

      08be4ce5c32c82565c4a21a0444c94c1

    • SHA1

      786ec35f66e96dd1f7e5023a02ecdfe563eedfc2

    • SHA256

      b021252dff4811e6d28ae0db5358480381e1cfd787005eb2b6c50e1cddc75e80

    • SHA512

      f23373602839bd7554834d698735da34fab26686154ba35958f468b4d96dfb3cbfb0f4537b3de97903792bf435f8a980f8d3a04fe6df9aa22a5b975cec59dea8

    Score
    1/10
    behavioral5behavioral6

    • Target

      北回归线2005精美全站/admin/end.asp

    • Size

      709B

    • MD5

      2caebe3e9518aea8810ddd2135281e0a

    • SHA1

      3c297d5b3abf9a55e2c7d27c6630e3ec200812a7

    • SHA256

      11c42139003caa0972295a1f0cc8e249657dddf5da82cbf4025f3f5593ec2263

    • SHA512

      60382ae924eb12cebc007a032f74e168d8470667f38d0a1aa06fdc1d843b38f224985131ccb2afa9d0b1677bd8f08d733d2810d6e62d26f1ed5d903aa0db2d39

    Score
    1/10
    behavioral7behavioral8

    • Target

      北回归线2005精美全站/admin/exit.asp

    • Size

      105B

    • MD5

      d5f96919c35e7ae32405db90d2b0651d

    • SHA1

      bc32c32564fd640e9605ad3e62436f27e27f62e4

    • SHA256

      5e6bd72c1c3aec8bc074078e449cce21f799660b9693c85fe1dc47568b75c331

    • SHA512

      58268953c88012afe6f6ed729d3fc0da524d547749ff091a54271d9e3bbf91a23f4ed13a8a163dbb062448a842488d256fdcc5ec007908e42930cfc305a076cd

    Score
    3/10
    behavioral10behavioral9

    • Target

      北回归线2005精美全站/admin/gbook.asp

    • Size

      4KB

    • MD5

      bf909ce019f00c75fb30511399124716

    • SHA1

      9b4fb040d4d7cf795b37b413aa09d69c7502ad28

    • SHA256

      7da5c53cce719db1c29968686a21c0e858990f2d485ebe7b60a73c3c8c1e5e48

    • SHA512

      5023290bcbf4215c47ce67d81f1c1c2e7105ae672f1d82f207dd4006c39eb41a125dd57e40374989204c74e4a674077cc68838f8197a0240e14a0a0ba753c3b4

    • SSDEEP

      48:1xbFsuJdV0Kk8HMtfPSEVNc9XNd+WmeYUSe3bdwg2n3gqssSRjsA06PzOjCXgpz6:FPvkPV+9fJ9r/qYRgApPzjaVaPfHhbvD

    Score
    3/10
    behavioral11behavioral12

    • Target

      北回归线2005精美全站/admin/gbook_rely.asp

    • Size

      3KB

    • MD5

      611bff606b82af338f3b99065cc49ddf

    • SHA1

      25c7e2d0d5f3bdf52f44e1b8100b7991b6bef446

    • SHA256

      a4541309adeab60e7e85ab52503b4b3cd6aa381034b4149785d51dc89cf28cbe

    • SHA512

      dd3e9fa89fb2c97238c289bc639eeca491b9c215dca9a5d004ff915789b6083516153267807508393f9a70c964111e5557a7c852c6cbeda901286e8459a3a022

    Score
    3/10
    behavioral13behavioral14

    • Target

      北回归线2005精美全站/admin/index.asp

    • Size

      2KB

    • MD5

      95edb639552ee8803df2411459d2e14e

    • SHA1

      8ec354f8b439b35af494728bf6f3e249a5823663

    • SHA256

      9845ad66e9b24042bed76e30c43b4698ff56067570306b0969c582697529b1d7

    • SHA512

      eb0349e8ebfe6aef4e1872ca768659e1fec6afa6bf7ab544181d84d618374a8c11291e063204615cc59cde72e17fef48755501aff1bec57fcc2409dc57c615f0

    Score
    1/10
    behavioral15behavioral16

    • Target

      北回归线2005精美全站/admin/link.asp

    • Size

      4KB

    • MD5

      0246772044e787e7c3979d443cdbb5c3

    • SHA1

      5ba65b9462a75d944a96ab20ad04416ed090d661

    • SHA256

      40f989e6be8af21aca7ec73a654696a95a05e99b8a33d9ebae6f7a26702e3c94

    • SHA512

      b05b6a20d29b443470c57b4e844814bc4c4bf812c5b5358a73b87f49b47959234870916460cacc60ea803277e74bc8ec02643bd45e3cc7354d173156dfdfc36f

    • SSDEEP

      96:+e0Opc9eeIAgT/cD4w5BzTmc04wK3WdddJdddc0LLkBy:+pOpc8eIzT0t51TzyK3t0LLIy

    Score
    3/10
    behavioral17behavioral18

    • Target

      北回归线2005精美全站/admin/link_add.asp

    • Size

      3KB

    • MD5

      407817677f961cd2b174f217d8021433

    • SHA1

      171697c0de33c7359c27c039267828f54a83ee32

    • SHA256

      a82e1d195b9ef411473fd3eb619b7970d36fca25666fb654e8aa6ba8ce54c5d4

    • SHA512

      e0874002a9307eed5c384af405d1b6910387aa0922818ec3d315ca8d14d5e43e57181c034830b663594280266116478e3ff8dac4a40f90f46ab37962bc8ad50c

    Score
    3/10
    behavioral19behavioral20

    • Target

      北回归线2005精美全站/admin/link_edit.asp

    • Size

      3KB

    • MD5

      58511fb99eb9ee19d7c6d0a719ffc792

    • SHA1

      e125387fd74bbb9ace322ae928a3b151557bc10f

    • SHA256

      47e648f85b84d19df0c06d6d6ff70a5b1021927074dfb0b8c7a4a85276c051a6

    • SHA512

      94d121f4489656c1b5d7d1f0894f9425ecb6a7e962599321a69e804a3c6a52e565f0c2b39cefbe1283986a43e7d3f86c9f6aa4674a4ac047c4ea7e1a0523e7f1

    Score
    3/10
    behavioral21behavioral22

    • Target

      北回归线2005精美全站/admin/my521.asp

    • Size

      292KB

    • MD5

      dfbce37e4dbdaae38cfd0bcaf25776f6

    • SHA1

      b69e968eb9c0e74b6065ae89f875d92300e21451

    • SHA256

      b2164dbcb5d2aff4ee8efcea003a8cdb9536d66ae5c894ae6704ba650c5a0f3e

    • SHA512

      eaa45c2b3edb8eb1b839efa052d9274d2cd609f679ab42ec8b941c80a81322a6c943e6bf5f2a577a68504d64b3c5ef6e78f73fb7d0f17d44b77cb594b0c6feee

    • SSDEEP

      768:HQH0lefMQmNCjewXf8naJWo5iDKqmhHwH9FI80tgGjX6Wv6nsK:HQH0Y9d0nako5iGCFTsNK

    Score
    3/10
    behavioral23behavioral24

    • Target

      北回归线2005精美全站/admin/news.asp

    • Size

      4KB

    • MD5

      f671a12acc5a99c73afb75870f5ba5dd

    • SHA1

      1fc54c15831858922bd0995e5640995e787ca72f

    • SHA256

      9f771320e82ac8583b430d44565dd412d667ac3a73c9e9e66bac60de48f2cc1a

    • SHA512

      0b03b48bc1398ba3db5f0af857d85df63646560046e2e822603da882f352b16bd7381bfcda3b776fc4c631dcec421b19a6839ea5e9018a9a0062f1bf16dd95ca

    • SSDEEP

      48:1xusuJpm5xk87ISEVsj/2VLp9Xcd+B2eYXOum0+ZaBpOz7G3ISs4vOjOGMN6d3k8:+QbPkVV9YGPqRsrS9+6SNowRy6nv

    Score
    3/10
    behavioral25behavioral26

    • Target

      北回归线2005精美全站/admin/news_add.asp

    • Size

      21KB

    • MD5

      977a99a14cb66c03c3425af9883f2c8d

    • SHA1

      3d2ca6fb9f5c4aac3eb3a011f51d46695b622852

    • SHA256

      7067bdc0c3c68fab7bea3c113599a4ee37c80711ccd67a23cb2e1252e41e43f3

    • SHA512

      0bd0c73bdeb901da9648c18177fe3e6386431b0290fead815ac42b0aa23b2fcdcc79715946dda9d1242f9f5194692a7f09bc7383c9eb6947e5415a94f61c1d92

    • SSDEEP

      192:7aHu2RP4yJz2b0G/bG2ZLkfpkeK5d24XVJAzbY4MXmn5KVTpYWt/LcL:DC9Jz2wXK2pkBvF4MXrYWt/LcL

    Score
    3/10
    behavioral27behavioral28

    • Target

      北回归线2005精美全站/admin/news_edit.asp

    • Size

      21KB

    • MD5

      cce1d24da5e7aa399b15e713d7878c9c

    • SHA1

      0ebb6304d404f4dc0d0b8081df5229671ecef000

    • SHA256

      7351a58577bdeccab44303296f5b1ce6034d634d7405a8708772aca709e0e3d7

    • SHA512

      cea2470836cbd46c89b1b1c73621cfcf9c5e33075979036a1b66b2f5e0b48903bdbd07e585050bcf1baa888fddcf89aa55e14f63123c66c1816e94221f5fea8c

    • SSDEEP

      192:KM2gkiRTJJl2b0G/bG2ZLkfpkeK5d24XVJAzbY4MXmn5KVTpYut/LcL:KIRJJl2wXK2pkBvF4MXrYut/LcL

    Score
    3/10
    behavioral29behavioral30

    • Target

      北回归线2005精美全站/admin/news_show.asp

    • Size

      1KB

    • MD5

      65b2bcbca2f441649839b5c8cf5c91bd

    • SHA1

      9e0ea60694b28dfa3e0e12dca8be0a8e0632bb54

    • SHA256

      2b48f5274e6ad6246f43eb4db26b1374e7b5499497597f316b8e8e644e2cbdfa

    • SHA512

      4a7e3910f2c64ee1c70b6d70a009cacacf608ea0d978e4b1ba80ca3394c7b94308925680d0173f54b0c4d96e94dca903eaeda5296c4d3604e6e4dee5f4124a62

    Score
    3/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks