Overview

overview

3

Static

static

1

docs/install.html

windows7-x64

3

docs/install.html

windows10-2004-x64

3

docs/license.htm

windows7-x64

3

docs/license.htm

windows10-2004-x64

3

docs/新云软件.url

windows7-x64

1

docs/新云软件.url

windows10-2004-x64

1

upload/art...jax.js

windows7-x64

3

upload/art...jax.js

windows10-2004-x64

3

upload/boo...ook.js

windows7-x64

3

upload/boo...ook.js

windows10-2004-x64

3

upload/cert/index.htm

windows7-x64

3

upload/cert/index.htm

windows10-2004-x64

3

upload/com...ent.js

windows7-x64

3

upload/com...ent.js

windows10-2004-x64

3

upload/dow...jax.js

windows7-x64

3

upload/dow...jax.js

windows10-2004-x64

3

upload/fck...mon.js

windows7-x64

3

upload/fck...mon.js

windows10-2004-x64

3

upload/fck...eld.js

windows7-x64

3

upload/fck...eld.js

windows10-2004-x64

3

upload/fck...t.html

windows7-x64

3

upload/fck...t.html

windows10-2004-x64

3

upload/fck...r.html

windows7-x64

3

upload/fck...r.html

windows10-2004-x64

3

upload/fck...n.html

windows7-x64

3

upload/fck...n.html

windows10-2004-x64

3

upload/fck...x.html

windows7-x64

3

upload/fck...x.html

windows10-2004-x64

3

upload/fck...r.html

windows7-x64

3

upload/fck...r.html

windows10-2004-x64

3

upload/fck...s.html

windows7-x64

3

upload/fck...s.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7fc3468f3f063078eff841283d2b9fda_JaffaCakes118

  • Size

    2.7MB

  • Sample

    240801-jz2khazhpn

  • MD5

    7fc3468f3f063078eff841283d2b9fda

  • SHA1

    e4eb3c2e8cf4f5c54c2752a344cbf0e6c271ab5e

  • SHA256

    5a029c8866637cdd037ce33b507bd8477da4f80a7d3ccdd2261548a049b49b33

  • SHA512

    8d57f8b611b58121e0f40dc34fe597f9cd0acc9c103a200b2ab1b317650d13aac0795c2aba7730d8e3f505d963e3ffd9ab138288a77f03f3f5ea42a8dc35f4c8

  • SSDEEP

    49152:F8zCy95iBtbha4ngetCaogPUzjwvv3Xr/zcc2+qXM6Hm0h9vYrmYREDEfPL2G:KzC27TovT/IcBoMch9zQ2G

Score
3/10
discoveryexecution

Malware Config

Targets

    • Target

      docs/install.html

    • Size

      3KB

    • MD5

      43ddacac4e0de3b949a1526cb5e0f84c

    • SHA1

      988b9fa2e2219fda0f9be26df12c2e594c6720c6

    • SHA256

      c37377d10378b65e81d30c1caa47526498959fd59e092bdeb8d4d5ca27efe856

    • SHA512

      4bcc7276dfa7ec25daf0e2813d48b4f8ab50e76b288e581aef68de01eff9dae260ab4b3111795c715a25f41516d9e9049f61ccc94c77e36bbe717cae9d3012d3

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      docs/license.htm

    • Size

      3KB

    • MD5

      b6d118b44186687b754cd0627751cb4e

    • SHA1

      969581885eb037bd7f67f8df683d79f1372dd26e

    • SHA256

      7ee8f5143fd8fe8acdc0037bdb27c9c43cb4dcba23caadc0dcf86a8faa8c6638

    • SHA512

      12d74ab6d4a4b99fa9d6e4408d6dc9b3f61f122abee5d191ca724a813dce98d02efc4475fc92dff1448841459a8c9c0f78aed73724d52cb61fe7ae629b52e6c1

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      docs/新云软件.url

    • Size

      133B

    • MD5

      4f0017b3b346bd0626f0c3b915e6e734

    • SHA1

      823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92

    • SHA256

      df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678

    • SHA512

      0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6

    Score
    1/10
    behavioral5behavioral6

    • Target

      upload/art/js/artajax.js

    • Size

      3KB

    • MD5

      54fab2954e9795a1967cd24c18ca0c9b

    • SHA1

      dea804f882df80e88836982b61cd201b1019d74c

    • SHA256

      77f61e9bd37e789897444ec1b57dc4307fd59ce4723f9d387d8f7287d67f975f

    • SHA512

      f4d5c6ee6126f557445b75a6f9db76a577206c668b8b5ea686827b7607a1956f4b82ea63e2722008309a5f6b30bb9a27f2b84867d1d86fd2818796e253665636

    Score
    3/10
    execution
    behavioral7behavioral8

    • Target

      upload/book/js/ftbook.js

    • Size

      2KB

    • MD5

      b9381add66ee7ea1c968868e9022c456

    • SHA1

      959f0e85d63d9e79d6f37578861c6b414f6a508c

    • SHA256

      7298165106971f32b0694003ba4c1e6f5293359ed0be53c060fd252c5a8b3f91

    • SHA512

      292a5d61eccbc0f1315bce5fca437a148dab268572cac2966a62a2a870f320400fce6e444236cc7cc55e8d0ab20e42befb149c77c1492a67bc0030a2d07fc542

    Score
    3/10
    execution
    behavioral10behavioral9

    • Target

      upload/cert/index.htm

    • Size

      1B

    • MD5

      7215ee9c7d9dc229d2921a40e899ec5f

    • SHA1

      b858cb282617fb0956d960215c8e84d1ccf909c6

    • SHA256

      36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

    • SHA512

      f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      upload/comment/js/comment.js

    • Size

      1KB

    • MD5

      3d2f39a4eb7b02377b224417b0070da5

    • SHA1

      121bdaa4dde7ab0b32c4204715bfdb4d4571f802

    • SHA256

      a812131e4a16b2f0950d6ce5c80ffbae026d96fe78233ada2dbb2bfd046d5e0b

    • SHA512

      f79d18ee6690ee473cc33b96b5f72925f405dc93dfe0c60419d439cbfa5e16c55514a533a55fa98145ea637530f1174877384007559ce5e71c5f17257a5fdb21

    Score
    3/10
    execution
    behavioral13behavioral14

    • Target

      upload/down/js/downajax.js

    • Size

      7KB

    • MD5

      40495dbceffff733f417cd0170557f7a

    • SHA1

      9e36a2a2292d048444d668d472a0613e41addbb3

    • SHA256

      e9381d255b391ca75c8d1f5e4d3d96707417a9b43432c85f4b7f094ca5315975

    • SHA512

      050e60db122a3dc0bb524c009c62a74252afb6969637470d66ef7d5da8a3a7d4ab53c6a9999bf09d21eded4e4fa04cacce0aa1f68565dbbae0257b8f7e365354

    • SSDEEP

      96:2o8W9D93yYOhdLuyUK9RB8W9D93UYOhjuyUKM3K2/a/ZK2/HYKivcf:n3y379f3U3VM7/a/Z7/HYKivA

    Score
    3/10
    execution
    behavioral15behavioral16

    • Target

      upload/fckeditor/editor/dialog/common/fck_dialog_common.js

    • Size

      4KB

    • MD5

      3c5be5ae07ca0d6217646be03ea10d57

    • SHA1

      f99a4a800878748c5424b75e81c42cb60bdd67ae

    • SHA256

      0bfa13a4c30b0d4124d2defb3c2acc2e999bfe0edb70603c9352dee622bd22cf

    • SHA512

      355522c5514a9ade3f3a688412242e3fbc2a900d05fe1b9f8c5614b1f2248ce13b5a531bfde1a503f23fe8d4aa8d29dd8a00666a203580d9ea7252828ff4bcdf

    • SSDEEP

      96:mQxgqzqhoIqqPVAXkfuK9gKerdq7Bp5vDzyrwpsKdK084/VC:jGhBu099gK9BpJuEpRd1C

    Score
    3/10
    execution
    behavioral17behavioral18

    • Target

      upload/fckeditor/editor/dialog/common/fcknumericfield.htc

    • Size

      439B

    • MD5

      6005ecd3dbc571bcd2cc3c3bdf13dd29

    • SHA1

      57caac3a5f3d25e73464bc89eeb218cd0983e0b4

    • SHA256

      600de2f78f6ca4f90676f72dd59abd655325c8cff01b7fa7207c789dea6daee3

    • SHA512

      0202426216ef7c984b1e7eb7463e22ab0cd53dff63ee212a4f8f4c24eef23ee819af8c963d1dc5ea9675f83a4a9697f7b5f8ed278c13599e464d94ff6fe50886

    Score
    3/10
    execution
    behavioral19behavioral20

    • Target

      upload/fckeditor/editor/dialog/fck_about.html

    • Size

      5KB

    • MD5

      73611171a38f0969dc99bbf69bd5fb3e

    • SHA1

      90c8281d6b6b6d40cb9fc7e5686d74e86ae8cd24

    • SHA256

      2e545533724856be7b9c4ae99ce64bf2fab1ea4081725d1b41929e8f2aecbce0

    • SHA512

      02ff7e25118708bd207f3e0f338ef2c45264cf0c44fced79fc08f39065df6ec683612f9943685a10012ebd786cbcc54a927103593dc47d583c19b012fa1069c4

    • SSDEEP

      96:jQxgqzqhoIqqPVEjUfWvFQf8E4rI2YeJdhCHC86kNHmeoIcohQzcDl:8GhBeIu9Qf89rI4LCi86kpmebmzcDl

    Score
    3/10
    discovery
    behavioral21behavioral22

    • Target

      upload/fckeditor/editor/dialog/fck_anchor.html

    • Size

      6KB

    • MD5

      51c4a7a33cbaa06426caf691bd348f54

    • SHA1

      df044b70ba64c60bd25330157a2303b69c203ea0

    • SHA256

      8d2ede65d96f2f6aa699175f49d8adf4c185719c7a0d85f225a494c3ed06b159

    • SHA512

      15f0563b93bb32a7c5c5454248bebe8846bfd274ed629658fa486dd5d52e9bd27fe99215d42a38546e2f9ec18879cb9b3fcb0e1d882bd2b941eb0cb0a0d7164b

    • SSDEEP

      96:owQxgqzqhoIqqPVEZGhDYXUVjRzOC+oNgdq8bABseGcGkzqSC/0IUdPTxeBdji9n:AGhBe0zdC/kLIUdPTMdHfCf

    Score
    3/10
    discovery
    behavioral23behavioral24

    • Target

      upload/fckeditor/editor/dialog/fck_button.html

    • Size

      3KB

    • MD5

      3bf700155d0df256fde75d247d60f45b

    • SHA1

      9dce62a8386bf62a0cb4ceeca7033b8b9b610507

    • SHA256

      ca537292542f5b04a2b2e4642285e73964b5ddb5894ae037594b94eb0288a2ac

    • SHA512

      3a9fd71bd8773ad30edd0511331e4e034531c4d48701cf7cf57c345cd218f16447577502626d4cb10bd7b6088847bbaac3099327fa4885bcc2cd5637a5b2a04b

    Score
    3/10
    discovery
    behavioral25behavioral26

    • Target

      upload/fckeditor/editor/dialog/fck_checkbox.html

    • Size

      3KB

    • MD5

      ca14fa7fd4a23e58e381528d8b3be22b

    • SHA1

      dd6a9d465ef733c7d5f99bd930f5d469e64f6d37

    • SHA256

      a840454f779bc28c5d4057b2c45483fd7a47c33f4df80b619fd78fb8eca6d6df

    • SHA512

      5794c8bc1d3115342dfb6f6e633813e7c4511b85e33ed1b5cfbd3652b2742a3e980b633bac44516dd00c11700a7c8a0188e15f65e77f0bc661c8d99e76a3e358

    Score
    3/10
    discovery
    behavioral27behavioral28

    • Target

      upload/fckeditor/editor/dialog/fck_colorselector.html

    • Size

      5KB

    • MD5

      bf9b03f5294b4e5b308da75379c81b64

    • SHA1

      1481348f47a1d3a1aeb70338e1eaed8da055be76

    • SHA256

      a28cc32211d7c3fc05c048463b89f6d3c1f0ba8a068e4b78d2b2e0c27dca1fb1

    • SHA512

      abd28e6713ce0e2f38d16a3b7210f3305a5a3058ddc472e2f79c8b0c72100a8993738fe5bda89eb18da65ad6876179be655f6605eda1fea07a72884cc602ff00

    • SSDEEP

      96:9QxgqzqhoIqqPVTkGKLZjJZg984DsWy5vltrLVCfCfNEvy91VxrUVLJ0I1SDgpYX:OGhBeLZjJZl4Ds7R8fCfNj91voPTDpYX

    Score
    3/10
    discovery
    behavioral29behavioral30

    • Target

      upload/fckeditor/editor/dialog/fck_docprops.html

    • Size

      22KB

    • MD5

      9cd560568a06d150f0ca7c9f692453c8

    • SHA1

      e73ae7004eecb288f1835defdf4d9ba69cfc3057

    • SHA256

      c19bfb935d41c50a34c7ab0d5dd0c54c066d5320b6a445092486d9d11d4187db

    • SHA512

      7d614ed2c9e843d888bdf568f1bf78ca7340aebb2a7d25bded7a9595604e4570542ab2d8fbd2c011437b1214fcd557ebffa7e1af93e6c4bff8f2a299551d911c

    • SSDEEP

      384:LNV7pR7cBq/DSSrg6JD96BD1kHn1WwuaL2etejS8iPqLyEUYHyg/OA2fC9k/66ll:Lb7pR7cBru/Wwb2etejS8iPqLywHygT0

    Score
    3/10
    discovery
    behavioral31behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

6
T1059

JavaScript

6
T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

9
T1112

Credential Access

Discovery

Browser Information Discovery

9
T1217

System Location Discovery

9
T1614

System Language Discovery

9
T1614.001

Query Registry

9
T1012

System Information Discovery

9
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

Score
1/10

behavioral1

discovery
Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

execution
Score
3/10

behavioral8

execution
Score
3/10

behavioral9

execution
Score
3/10

behavioral10

execution
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

execution
Score
3/10

behavioral16

execution
Score
3/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

execution
Score
3/10

behavioral20

execution
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

discovery
Score
3/10

behavioral26

discovery
Score
3/10

behavioral27

discovery
Score
3/10

behavioral28

discovery
Score
3/10

behavioral29

discovery
Score
3/10

behavioral30

discovery
Score
3/10

behavioral31

discovery
Score
3/10

behavioral32

discovery
Score
3/10