Overview

overview

3

Static

static

1

upload/adm...nc.ps1

windows7-x64

3

upload/adm...nc.ps1

windows10-2004-x64

3

upload/adm...map.js

windows7-x64

3

upload/adm...map.js

windows10-2004-x64

3

upload/adm...ure.js

windows7-x64

3

upload/adm...ure.js

windows10-2004-x64

3

upload/adm...inc.js

windows7-x64

3

upload/adm...inc.js

windows10-2004-x64

3

upload/adm...x.html

windows7-x64

1

upload/adm...x.html

windows10-2004-x64

1

upload/adm...inc.js

windows7-x64

3

upload/adm...inc.js

windows10-2004-x64

3

upload/adm...tpl.js

windows7-x64

3

upload/adm...tpl.js

windows10-2004-x64

3

upload/adm...x.html

windows7-x64

1

upload/adm...x.html

windows10-2004-x64

1

upload/adm...tpl.js

windows7-x64

3

upload/adm...tpl.js

windows10-2004-x64

3

upload/api/index.html

windows7-x64

1

upload/api/index.html

windows10-2004-x64

1

upload/cou...tpl.js

windows7-x64

3

upload/cou...tpl.js

windows10-2004-x64

3

upload/cou...tpl.js

windows7-x64

3

upload/cou...tpl.js

windows10-2004-x64

3

upload/cou...int.js

windows7-x64

3

upload/cou...int.js

windows10-2004-x64

3

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    606cdc21e5d0a666702f060282a56bf8_JaffaCakes118

  • Size

    771KB

  • Sample

    240720-3hr5aascpj

  • MD5

    606cdc21e5d0a666702f060282a56bf8

  • SHA1

    00be9a314a69722296b9d01fe4ef75a750bed0fc

  • SHA256

    ec52e07123c77fe0f3cbe5bf94f678aaba666d441b2e6e63905cd21855ccf462

  • SHA512

    6094dd668c513689a5ad695d1a87117a24742aa9e13bf05c5a625cc9d4202143e67d2a4aac5303d5ba2d5846d2b26cf3dc93e4e47208937c037536c9a035c432

  • SSDEEP

    24576:3Zi1pcoLcRp+jnbaxyL6RFT38gmJvDKzbGw:pi1pcoLYp+jnbLLQwgPuw

Score
3/10
execution

Malware Config

Targets

    • Target

      upload/admin/database.inc.php

    • Size

      13KB

    • MD5

      927845142b15e5ff3eee2d65530d48d7

    • SHA1

      8afee50e038c95e090514b647779847e357275a7

    • SHA256

      6341a4e8b9bd3b7f8689a88d7353ffb6c57476b930d9d0b2682a2c28577ffb57

    • SHA512

      3383a8d2aa39b5d2c5b7e0298dd3fff6de6cebfb2567d3d840eb06205bb5f95756a8033e0508491aa2c37c8121bee5d90b0f4fdb4c490056ebaf288f3a138b85

    • SSDEEP

      96:wQ2sDsS/FW7QXqsR7hTHLsrC5wsPcyF8z3yiFwjM03LsI44uaXNym6P1p905me+K:wQ20HA7tirmCuYcC9jr3LMm890j

    Score
    3/10
    execution
    behavioral1behavioral2

    • Target

      upload/admin/dlg_selectmap.php

    • Size

      1KB

    • MD5

      40a798dbb1468f7637ad5bdc0c8679d0

    • SHA1

      02816554541c42eeb792da053a15cd2b73956d49

    • SHA256

      c88eca4cac727c4c2ed47ed95317ddfb7d9af500b1b28eab648ea594e0fbae4e

    • SHA512

      ca641e499401e4b793e3d2ae3a2ae15569f1ffe5aea23fcff18f148e219dc4bb77c44bb659ba7ef74c7aa3d2b33d96c660f111f76bb97fc16c5bad444f869e24

    Score
    3/10
    execution
    behavioral3behavioral4

    • Target

      upload/admin/dlg_selectpicture.php

    • Size

      2KB

    • MD5

      d2538fefb5c9f3d668d1adc34ac099fa

    • SHA1

      24116cecfd4280ae6369e33e6a98e8cac495f644

    • SHA256

      c694ee7fbe1474588b9112fd6f09c012e8af07dc7b0394299bf4eba83ec26bbb

    • SHA512

      679e23f3544bd3843908bef418ccd845b1cd7f7ad9961d5f910d8f3f0c67a33d19824c90bde40e2ff877760feb666919cf4491d925e498b15dffe4c3dd78b434

    Score
    3/10
    execution
    behavioral5behavioral6

    • Target

      upload/admin/header.inc.php

    • Size

      2KB

    • MD5

      75df2e11f6a3ff8a6a44110170532f07

    • SHA1

      236892050b917d34b6d42426217b57a251092260

    • SHA256

      12638af475e6854160285ebd1c67296fd1732e0ee364e63156230df845b7f62f

    • SHA512

      7566fa04c1be2ab18cb4e00094d2486f44794d57082ba44c87695d429245a3d554e561cedb8e3ba69dd5cf3293fb7e61d9ecedb993f0d9ff787aeacb5e795999

    Score
    3/10
    execution
    behavioral7behavioral8

    • Target

      upload/admin/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral10behavioral9

    • Target

      upload/admin/menu.inc.php

    • Size

      2KB

    • MD5

      14f856f89133a305395565b4a83a1fd8

    • SHA1

      d6a4ce4e33431a58fefe7592a9a38a0197b5f0f1

    • SHA256

      ae0a16c46cf3bf8fe5e4ae3ccab93d4b2d4cf2b997ee35a7005958cfa0ae0b00

    • SHA512

      d5aa7b1fca1058edbbb24fc7a3b8ce641cb48b759ff119ac4d63dbed62011cc3689ce9696691524787309335731f456756afaec231305db594506cd31e30cfba

    Score
    3/10
    execution
    behavioral11behavioral12

    • Target

      upload/admin/templates/area.tpl.php

    • Size

      6KB

    • MD5

      bbd055b211f2af9f2402552e159bade4

    • SHA1

      a8bccc473664893b31fb4b56cffa6169edc8144c

    • SHA256

      c373771a52f4a47723560d17fc39f2938d3bc4d4f077194de7375883b74bad4a

    • SHA512

      2b0780bd55191aae0c5eb54ab5d1ba91e1394eb34ac706a68328c4f0ed3818bd218acfe5d8eb983a4fcc649d32b30608a6c9ab3cb591dcf0342a10e477cac37c

    • SSDEEP

      96:7oFSbcjf6pF8QGiXFOYAxrdSArAbdx6+Qf1eBGlddddpCqUN:7oFSASGi1O1yZ2+Qf/CZN

    Score
    3/10
    execution
    behavioral13behavioral14

    • Target

      upload/admin/templates/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral15behavioral16

    • Target

      upload/admin/templates/msg.tpl.php

    • Size

      725B

    • MD5

      2ce8f2920b9c17b19277c9e163c31bdc

    • SHA1

      df897e80e79823dde49a8f9dba888cc571d247ce

    • SHA256

      f7be884dd7c0897662587d7a28b88fdfb89a5e05fe16922416195c9148ec2724

    • SHA512

      62d55a51543fb0de6c2e96c88107db3eab3a0b4e25684ecfc573f0c3003ac6ec25f075d326359b4c78610d82e30fe458a52a15b0c66485beee8c673a1eec4380

    Score
    3/10
    execution
    behavioral17behavioral18

    • Target

      upload/api/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral19behavioral20

    • Target

      upload/coupon/admin/templates/edit.tpl.php

    • Size

      3KB

    • MD5

      aae3faf38c0a7945f2403085dc6b4091

    • SHA1

      cd5868edd69a4631360cf666a2a0f6e6d232eb52

    • SHA256

      dc8c4eb2ae8ed2bd11061c76390571206523774a5b1856768e402e236c3a6d8f

    • SHA512

      59a5202c5f0cfc6ec190d698180ce694176da03b65feb71e6ef3c536bdaa6bf34123d1ccd0e7f2025e109e6936b21ada79bd254ea5391c84572cd530c80ea13b

    Score
    3/10
    execution
    behavioral21behavioral22

    • Target

      upload/coupon/admin/templates/list.tpl.php

    • Size

      3KB

    • MD5

      cf169386ae92b5b0be6331dc4935f484

    • SHA1

      21d8344271267753de5e23bc6f3339ca5647cb47

    • SHA256

      ebbfe061fd0d9fbee5265d689b5e57e6dead2e5a8905a2270dd2af33923e4e59

    • SHA512

      787317a94e747db3947b394699de2799451bbc15db10cc1e4a33de4004d0f128f72279ecaa370b938c016a24e44d7d5713fbe677241e489debe077f45b28072f

    Score
    3/10
    execution
    behavioral23behavioral24

    • Target

      upload/coupon/include/ac_print.php

    • Size

      1KB

    • MD5

      1c067d6eb76ada7a9744ce8cc3c47d6c

    • SHA1

      ccdaad91248d78d3d137837c6697ae35f8419aaa

    • SHA256

      8d21ce8017458ce6b44f511a127326c2826690fb68bdee72c018a44fa9ec3977

    • SHA512

      69c7488e97cf3570338b8ffea3d8d14c7feeb465e66695ddb40095d292c48e81b1d0989cddca2a0407dbc719c02035fcb1d4e7caa668086d208cdc33dcf0b4a7

    Score
    3/10
    execution
    behavioral25behavioral26

    • Target

      upload/data/backupdata/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral27behavioral28

    • Target

      upload/data/datacall/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral29behavioral30

    • Target

      upload/data/index.html

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

10
T1059

PowerShell

1
T1059.001

JavaScript

9
T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

6
T1112

Credential Access

Discovery

Query Registry

6
T1012

System Information Discovery

6
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

Score
1/10

behavioral1

execution
Score
3/10

behavioral2

execution
Score
3/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

execution
Score
3/10

behavioral6

execution
Score
3/10

behavioral7

execution
Score
3/10

behavioral8

execution
Score
3/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

execution
Score
3/10

behavioral12

execution
Score
3/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

execution
Score
3/10

behavioral22

execution
Score
3/10

behavioral23

execution
Score
3/10

behavioral24

execution
Score
3/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10