33eb3ebbc008a5d3cb81c42156abcefc32d7bddd58fba033b6513acaea3eb152 | Triage

Sharing

General

Target

712131bb71e004e0437654abeaedf95e_JaffaCakes118
Size

1.2MB
Sample

240725-zbswfswelh
MD5

712131bb71e004e0437654abeaedf95e
SHA1

53a41106c35851002860817cce17125c5160171a
SHA256

33eb3ebbc008a5d3cb81c42156abcefc32d7bddd58fba033b6513acaea3eb152
SHA512

eabd8c8f08e8b25ce58eb55f51efb3146f68b25ca150bedc692da893a3419b23d26f40855fecc819bf0cd1f96eb7603f965817818124bc4d748dfaeb78f4f29f
SSDEEP

24576:ELuwzu4TBxNUTMDJTp9EkbNVPOSpY8hkAJJxo0Y7f:mpu4TB7VTpPTWS13z9Y7f

Score

3^/10

execution

Malware Config

Targets

- Target
  
  155绿色软件站.url
- Size
  
  219B
- MD5
  
  3a1f2a8a3ef08ae269517a69ea918b2c
- SHA1
  
  7d2e6719702bc8472e045e010efa6ed3f7df4b5b
- SHA256
  
  66eafefa8bb0155e60828476bde6068573fe64a4fd0aa052eba074dbe85d46cd
- SHA512
  
  22203a78192cadc02d0f887247675925273a69e3be82ec1a331197f892216a282cc8f37c3ffbfb578a708244181037277b8cc6a40d8ec70cdf0feac5d80f8576
Score

1^/10
behavioral1 behavioral2
- Target
  
  drupal-6.19/includes/bootstrap.inc
- Size
  
  41KB
- MD5
  
  d46e5c2bcdbd38f42793ef423df1ce14
- SHA1
  
  dafbcf35f1413501b0ac2f8698abb3b9b7ee00b7
- SHA256
  
  ee443078a0e8ab4ba62232b56b2b07aacf6c7775ee8335178b382224eae6c18c
- SHA512
  
  5383df3bea2dd45f82d5bd7f2b1d7cae2d905d78b8ff97fbddf7b263ea6ef1b6156ae6f0c82431ece6222eb77c899d19df837f2154cfd10678c42c74f68bf0c3
- SSDEEP
  
  384:ns8z6IRk1Vmqfu7Zz8Zy9v9cr2JgFIk/R7B5qfoH6h5JkxMnKxm82gOrFaOtE7IB:BDmF7B5qh50xt2g0TYx5E9pAGO4Aih28
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  drupal-6.19/includes/common.inc
- Size
  
  127KB
- MD5
  
  8f01f8aff826523d405797c7bdc7b1e5
- SHA1
  
  569315098bd14559b8871deb1e549648a2ce9699
- SHA256
  
  0d5cd07984c7a6500e569362047336558940cc0f7c0a8d0ddaeedd5585420e3e
- SHA512
  
  118693a531cdbfee23752bcc89ed63d669ebf73ccc7684016f3ccaaed10139920c1585311880341a7727e8fdaf93eadcdfa41f405d37e1814b441d9f8d6514cd
- SSDEEP
  
  3072:OdcKbYuO20LDpKJbjYZJtxOeMBJ9Tp669H0XNbjPuS:ALY//kbjYZJtQT9Tpl9Hm5j
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  drupal-6.19/includes/file.inc
- Size
  
  52KB
- MD5
  
  ecfc5b8ff4c9f7691eb0dd126834c43d
- SHA1
  
  51d0c0ad6c24e029ae2f0e969c5ae43896b0f75d
- SHA256
  
  7be072dcdbd8258d172235fdf99a3410a38d69aaf7bbe386f74657f5f4d20651
- SHA512
  
  f353c0fb98d5d5c598889bb8c54aeb76d3b623cd154a7a0d116a9cc1c16ba75708b5796baba4172037fe32d504ba979dd5496fb05ddcadf30a44b18a39a96f01
- SSDEEP
  
  768:vNC0BzDTviKxtnuzfxHxArhMX/co/0u1vpeeix796ttN:V3zDTdTEArhCEo51ReeiN9WtN
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  drupal-6.19/includes/form.inc
- Size
  
  92KB
- MD5
  
  d73d02a61da07257edc0fa8d517d5796
- SHA1
  
  f4dffdc1a14330db9f3a59f14857de5479e331b9
- SHA256
  
  0497468348de059cb38aa816d1f7fc3d6b4e67698635c98026a6340d2a6b416f
- SHA512
  
  f95a8c8c8711349395e78c1d1b1eea2b60d38af5f6bd5a35c037888c6b576ecbc62e13d3cc8561ba89959d9e10eb39df04d5678e10f6edd2ee8919c9f4384a13
- SSDEEP
  
  1536:uFTiUqo0cgs7xEkQ7zIRpLS4FQfB5NxZNUOXe/mLqEYJQFnMKnXebvfSXe/dwfjz:uFTMNuHXj3qEZo4qBrp7GoGQZ
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  drupal-6.19/includes/install.inc
- Size
  
  22KB
- MD5
  
  09a6fa6710b9e2ec735819c41be4746e
- SHA1
  
  9265b57254f2fc6f09c6cac491de556d2c273c4c
- SHA256
  
  5c7b5df5892330085e3950b1d08ad89f4d72bb58bdc3640e1ddf923cd3358414
- SHA512
  
  7a2cf12e1dd189c0a3082096cb8a070020e8d2cfaff4ffbf05479591952f737cd0e584d7b4769557cc8b9519fc42c7845e8c5ca1975f75653fc87976bc994f97
- SSDEEP
  
  384:V/G+jTnRBzaYetSoqgC4cL3/VTl++2nphJDWcfdwn:RGeTRB+6lWO
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  drupal-6.19/includes/locale.inc
- Size
  
  97KB
- MD5
  
  a257815dbb2a83451cc585df4a35630d
- SHA1
  
  a229335ab54e2f5a671b7d6835433e34dcac1df3
- SHA256
  
  4b26f113c3643e2847c8279fd167b78491ee3f1ce46748507e649ea5f42d3d05
- SHA512
  
  41b295965d576a7bd8c7cffb3011c60fa33d159ccb73f3a6a3c61ac080e96318046ddd8ac07cf58f91f4c1c576ae23420f94355d612070a5c78d5fe23c8bffd0
- SSDEEP
  
  768:NYPqUcdx8cqZYhR2dpVWTV872Fi9VGVtPet8Gr4K67X3byEwAZ4Tu/B9:Nyqhdx8cU5G22G05ey5Xt
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  drupal-6.19/includes/mail.inc
- Size
  
  17KB
- MD5
  
  368d621d1f778e038daf1ddf8f5d9a85
- SHA1
  
  f55c0c0ef7fe5d0a530276c0cf1496e14b946d11
- SHA256
  
  e4fb78e6a3720c43756a4d64b366f81ae6ef99e0d7253d42600484d01630b362
- SHA512
  
  d1aaacec6982bad4de4fa879f3d88fb9f4351734141991351f68deff8f45c79ed9a071f72234fc8cbd9506f2ad513b29636795a04151bb18c07e3a5a9143f071
- SSDEEP
  
  384:3WYK3+tNPMKURlUPlY/lgbXmDJegnUpbe5EU3qHsimc2KgEuwCx:NrXOjjaHex
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  drupal-6.19/includes/module.inc
- Size
  
  16KB
- MD5
  
  0fe6b203135cab83fef2ad04f21290ff
- SHA1
  
  c8fbb27a9b61a6cfab3a4358d9f15d10fceb7b34
- SHA256
  
  7c14c1c295242e690498e2723e4427434ef2753866a8a9b8cd6bf1dbdf2468cd
- SHA512
  
  3cd6dba85040a0e5da4190f8bdf47afc13833b971d77a77334fec88f425454fb057d95c2fa7c76081a434a8612f0057ad1090925378b6ec3268fa7ec2804bd32
- SSDEEP
  
  192:zEIbiXtHe1ya7QZRTf2197ee1bX20uk4TCqyaEyPK+lGHM2x/tI7gaJ5kFivUN2y:4beq6HVrfafcisN9GOLN
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  drupal-6.19/includes/theme.inc
- Size
  
  68KB
- MD5
  
  f9a129404a7110048681b23be674c71f
- SHA1
  
  966cc74693fe0e1751e8eaa8b5c8918538378c1b
- SHA256
  
  fdfb36f62efac1f9edd07140030a1f6e09114ee6b7d7b9c6acdc5303d9499351
- SHA512
  
  4ba3b2e17cdb73dad491d51c344d74654a5b03d33190f2a72b68e0934e1ebec8bfd8b7f6f3b782bd3652482c9e7b365c10fe2911c4623c3c817b803c93acb09b
- SSDEEP
  
  768:qQbtgOU68zKX5H2naLOarqghWTIyOu9aFHhcElMSHlXTbOuy5iyac0mvcl:qQbKOU6yOOgLgdavceTCj5iyac0
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  drupal-6.19/includes/xmlrpc.inc
- Size
  
  14KB
- MD5
  
  f9de4b401ae83f7c75e72dd7e4eeb86a
- SHA1
  
  8b3f52ad501ca0b4726af6996e57618b4ca5e4f8
- SHA256
  
  f97e1d56fc3e58980d5ab92088151f1d25965f66990d8ef1068129038efd215a
- SHA512
  
  c9e2ee0089bd9dfc29ae5fe2aa3b105406533b63ef6310c59fe75e9f125808b19a7dd868b371f857c656cf2b94c86b1d92972af1d50a8adc1e3e91e2425860e7
- SSDEEP
  
  384:Qho4DA6JvMetJekcSCppX3b7lmZ7owq6VQ2U7P3MzYA2YNWbHeXd2AP2mxBDlwoe:QO4069MetJekcSCppX3b7l27owq6VQ2a
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  drupal-6.19/includes/xmlrpcs.inc
- Size
  
  9KB
- MD5
  
  ec0196eccd9427c3c05afb4ff0aad2c5
- SHA1
  
  d213238e13a77dacff61768d5e2151bbf6f39482
- SHA256
  
  68f5c1d356d4daa7a02de6924f14dea0fe1e6d90f0c1fbd85a6f4dbdeb4b24c9
- SHA512
  
  3b5fa8362c4c8bc021162d653671b519d7c7fe0e3acddb3d539eb6bfbaa4a697d0d355d97959700bab9bfa5619e92593157b39c290f18b9946385cb5bf1359ee
- SSDEEP
  
  192:Lo8AbUIr2IMm4jonEqmFR4QoOzZeNilKN:LTAbnr2IaAQef
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  drupal-6.19/install.php
- Size
  
  46KB
- MD5
  
  c6864a93cd9b8ae921aa9e55f1f459da
- SHA1
  
  8805dffa3f1b764e9a93866de3b72e1c8abe62ca
- SHA256
  
  f888512553ea1c9c7456f3f66ec058bd6a16ec1730f381c6c24c6267f35b7c04
- SHA512
  
  e59b21465e06e8013c196906ec7f9b1a29ce84e17a3a63bf02c4d0c6eee762b1088505954c6c78ee789ce245fa61eeed89f8269b86d464269ac8da51c2787610
- SSDEEP
  
  768:tTSidW1fnU7+avF11i2nwiTQKWFgSQ7/D/Lk:teieCsK2gDD/g
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  drupal-6.19/misc/ahah.js
- Size
  
  7KB
- MD5
  
  082f5208102315b0ec105629521ff901
- SHA1
  
  25d0c3ad206a2e08a4dbac91f140877015644cd1
- SHA256
  
  f4ab4a0ae68572d27f39f31d44b14960661cd9ac15326f1c9a1e7718c1bb0d44
- SHA512
  
  00cb8bebefd12ce15b29c0ec73be4d1fcd456f3125dc933b191d875850de10fc2918a344a70cdee89648203f8184da44e494b9773a40b44bb517847e53a3e7c8
- SSDEEP
  
  192:waTo/kHpec0tBFnQvddeoXekrFSiXyiiJw2KfTmdQHS5oCcE:jsUFIbQv9OhoL1mWy2CZ
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  drupal-6.19/misc/autocomplete.js
- Size
  
  6KB
- MD5
  
  31b3b84822e7bdba7fd9934b83b4d2cc
- SHA1
  
  0b8a892d737d43b419df3decdf933cf2f2261034
- SHA256
  
  1f09e4ccdb63c347065092774049dabb353061cfac022bdbf17943290e5c2415
- SHA512
  
  4adcb5b0754f2b50713b0c7aac4791b640bd84c827a12a54b673cd714ff86476c3fa84ca2a32a72a959fce3e644c7710f12272fe568efe884dedc5bf38eb58df
- SSDEEP
  
  192:xTXcxfmDlUwQAcyUMIrPD6CGSH8x3TJlb2nWK+ZEI:xGmxUwQLD6CGFX
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  drupal-6.19/misc/batch.js
- Size
  
  1KB
- MD5
  
  db3202b98a13e29cd877cb029b6fef97
- SHA1
  
  ea26143ecbca53e4ce74f665a6a2a04801bec4eb
- SHA256
  
  baecbfa0fa2529712c1a377149878eb5a31f87710e36d6fc311a8ec56a126128
- SHA512
  
  4a9b0c0493a2d51f7caf4c559c116e4a481670c2df47d39c722480bb5a68478cab1c099cd5d4a0ac35fef31576d8b2c4ae498aaca339ebc909aea6b0004368a3
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32