1b6dea7e8fc87592e350432fc1fa126b9e30d8e9c0cdd938033b9f19e366e458 | Triage

Sharing

General

Target

JJS-UI.7z
Size

45.0MB
Sample

240807-zb245axckg
MD5

b7ac9712b68b241b25fd4f8590fc618b
SHA1

b5db333396377d6534ab14b0be0309c605698e9f
SHA256

1b6dea7e8fc87592e350432fc1fa126b9e30d8e9c0cdd938033b9f19e366e458
SHA512

5f803011e24200f00609bf6409af6d46614b516bba2fdc3b4a07e357da75bc782822fac24f8cb025d26f619c1fe5265de062d3afbb12d37690c70ec3ad5826de
SSDEEP

786432:VieZqET95nJT3g5oxe893CThYC2GxAeLwlR/TE/yLOMcutZAUnDO:VtT9RFQaYYhGSWwf7n9zAUi

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  JJS-UI/LICENSES.chromium.html
- Size
  
  4.6MB
- MD5
  
  19a7200e2813cfa87d728205db3de87a
- SHA1
  
  b24e2313e0ecbee03fc132f24fe54e84850513f2
- SHA256
  
  34cbc992a26037e2e57f948ab34cf0f65c2a50503580c54309ed63246681fbd7
- SHA512
  
  94b54bef938aac9156ffcd9c83d75cc8564849c1c5042de060c31f190e406f29fdf046a961a72fb71f2a5b3b41eb13a65f90fada99ba34d83a2717edee102cc9
- SSDEEP
  
  24576:5ueBpmnLiLOU5rUrPKThrkUAQwyfQlQue:U2pmLALFyyVEl+
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  JJS-UI/resources/app.asar/build/JJSploitModule.node
- Size
  
  117KB
- MD5
  
  80b6d5f12dfe42f21dc5ec5ee793ad08
- SHA1
  
  53aca73b99b75191bdce2a025151848b370dfeae
- SHA256
  
  0d7f23c4e4b1a3dd6e2e77465b4bbe1487a82e9681c327e48090abf3c726ec0f
- SHA512
  
  236fa76c080f915f221d0584445261b87c77425400f260555395f0f5a29ca3cffb6ee8c9e477d1d4895c10406e651c8d87771f1b1de889fca5bd6bc4f818bc9d
- SSDEEP
  
  3072:ObUR7NwgCAgXytiN3cG5AsiGEcDcaAyp/kfH8lh9rrR:xpmBAKytOM6AsgcDcMJP3R
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  JJS-UI/resources/app.asar/build/luascripts/general/aimbot.lua
- Size
  
  80KB
- MD5
  
  591a23901728cb358be97994465d6781
- SHA1
  
  8a065c6d62140b9a2472a14e8d369b9543de2cf7
- SHA256
  
  31f3508e1aede13141b14aa64cf3600d55385921ca196c796fcc2f69a2d241c0
- SHA512
  
  099dc99442515a1383dab8e9a12a67b3ce49cb23b69361f4f9125be537ee997da3a21ff6bf42e28b00508dc13376cecdf0dcfe7600e8ec808e0f2629bd8e9a53
- SSDEEP
  
  1536:2Yz6ZB5LmvK0d9DQ2JjYhOFW3ajLCSCtWT0y:2XZ92HFW+LCSM6
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  JJS-UI/resources/app.asar/build/precache-manifest.8d062de63087e77d0dfde937d2ab548c.js
- Size
  
  7KB
- MD5
  
  8d062de63087e77d0dfde937d2ab548c
- SHA1
  
  07fcb3c1e490e269d5072114a122364d47683af3
- SHA256
  
  a246a3f6b15238ff029b90e0f9b0832b85861861f488c87c944bcb79aa0b3224
- SHA512
  
  8aee1cef0a21d79666cab56a0fe6aa12d241391c01a17c0173394fd6cbb4a76ffa51729b2382eaa0e0bba2e3576511d3023befc6494fae2192f27c16bdfc9d9b
- SSDEEP
  
  96:uikID8Cq5mdOmxzqOD9s6huiyF9W1omEAlX2IALa+dbTPHwmUOlAKOxFjhlqTxBV:utoZ+7R/scUe7bhSxAjv
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  JJS-UI/resources/app.asar/build/preload.js
- Size
  
  212B
- MD5
  
  26188032e4c1e3a142f2e879a25ec59b
- SHA1
  
  c0d91d34ce3ccbda9476531cf9c223fc76b98c73
- SHA256
  
  4e7b123e4221383773f5afb2e250a6bda65f0106f8584b3d7374275c6823d318
- SHA512
  
  aa9e9dafdb7bcc12d67cd3d81ff75927399fd505082020a1ffe3084c2a8e1fb7fd08671727c38a0932cf91bcb9e39a374ff9f8b7c236e7b00d02f661fa3bbfc4
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  JJS-UI/resources/app.asar/build/service-worker.js
- Size
  
  1KB
- MD5
  
  81f26b4440def1c7b579edbe5a898b3b
- SHA1
  
  d606f831a02aacc410e83da14c01a8364807fd2b
- SHA256
  
  989dc8c226cf82cc73228402e7fc20728fb0f3744fb04482874c89755489a183
- SHA512
  
  3d9457883006dc72a1e0762d438829cd5a893e09c2e2fc91176ea8a1c1fbb99d71434ce87bc2720dee6ba668b20f68cf0e9c65e71bdd77eb32b55aa76243fa69
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  JJS-UI/resources/app.asar/build/settings.js
- Size
  
  1KB
- MD5
  
  645624936442ad2eb8d5ee8c7708a938
- SHA1
  
  995acad686f281c2accbb09b2796ee9888ba2f5e
- SHA256
  
  6db608c7e8a23a2d995a2a970401291b6b03497e7f15ba924573ecb97edf378a
- SHA512
  
  08b226756e8374a7382e5dcc544d7b693a1c69ec9aaaec73fbd60a9560d131673a85c46ecca14cdcdc228305efe8121abd82768615527c2da784fd8c6ab8e7cf
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  JJS-UI/resources/app.asar/build/static/js/0.5b03d618.chunk.js
- Size
  
  5KB
- MD5
  
  c8ed59d3e5775a128eb82b60df54ba21
- SHA1
  
  749921a5625f5af1cd473d00d464bf561224ef50
- SHA256
  
  1e7e640ae9b8ad32babf61ddf4922e84d6e307bbce259f1ccd7988321b55ebd5
- SHA512
  
  7f78fa861feaf14a02315ae90c9e2a041d1f1da7d53116afe9eaa1ec74033d170dbface08b80a232724c630e918cf93808c9b719440819bab93742ed9ac10b97
- SSDEEP
  
  96:1rbV1+gqVV1+/9Vb9ZRC2seM6jjz13MwVcEghhb6Yw7bwwGcmvRhUlNNn957V:1rTOYVv5M61h8hSHwiYg19v
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  JJS-UI/resources/app.asar/build/static/js/0.5b03d618.chunk.js.map
- Size
  
  9KB
- MD5
  
  4198aa8f12c6539c836ff3991011afcc
- SHA1
  
  efce18ed3d036d8198cbdf9180020984ab9e3222
- SHA256
  
  78a9507aeae60c603f603ef09a936798cbf263075de4ccb5e3e99c7d58002e21
- SHA512
  
  fb301ddd0fb093bccabeb05c09586c0b96b6c1653dc0adc3bce3a338ed5f37deae924f35a9df8b079ee5012924b221d7bc3534ad4a685c1518d904f7cc8e84fb
- SSDEEP
  
  96:fqVAH6NRFYRKsiR+D/+gQlPaDjd5vulWJn42nmwdSJ5VwLDshAQcp6xowyo+UPGa:fqZNwQr0D/+vOvulW549WYVwmhCNKt9
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  JJS-UI/resources/app.asar/build/static/js/1.7c33c0ba.chunk.js
- Size
  
  7KB
- MD5
  
  55b5885c4d5dcef23123fc48a0f60734
- SHA1
  
  2312025480f82bd8a838a5a70b876c870fda447a
- SHA256
  
  fba1b99503d4725531f1e7b50e2a0996125461d9367990df8b16bd65863b3a6b
- SHA512
  
  4db1986d61190da4e76bc3974a444797f8327c35a284f4c779f3d4d69e53f417802d389b75e3ea42b3da1bf0d618d96311888f681c435e7e075a86ece31d2f18
- SSDEEP
  
  192:grWKO1smwEcmL947wocAejKOaSWKEisQ4x:grdO1s/BmL947wocAjSWKEi14x
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  JJS-UI/resources/app.asar/build/static/js/10.49680587.chunk.js
- Size
  
  3KB
- MD5
  
  3f0a42aee92d5d2211ea781c1c6a50a5
- SHA1
  
  18a7d3e5982ec273f1c26ddba4341a828c8b6554
- SHA256
  
  43809b1037df0f299947e09556a8d32e094f64ee1984cc41157c68f41beaeef8
- SHA512
  
  6d0c3eab9c61da91f4b23a5aba126f7aa047a8908c6237f71776ec2ecc045ecdb342274dbf144dc1e796ab76559c146d4b77afa0045b2abe63cb562e07353a83
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  JJS-UI/resources/app.asar/build/static/js/11.40047561.chunk.js
- Size
  
  897B
- MD5
  
  5ef3e0fadcf49c50033d9f64f75a1777
- SHA1
  
  96f51ea6f94a68ce894088e1efa9f606f4930606
- SHA256
  
  fa3fe1963a3b137b9c26e1687e8c3712af1befe4c3809ea991c6f33e02f8164c
- SHA512
  
  d735640dbd1bc02767ae7ddd4cf575a1bcf404c24cf2b7a75569473da20957e8255c0080bca58bc4f546ec0a6eed764aa3bc270eb2525d7bd123b582640dbbe0
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  JJS-UI/resources/app.asar/build/static/js/12.b774e9f3.chunk.js
- Size
  
  1KB
- MD5
  
  f4daf652fff8a78f8c2d7ad496e8eea9
- SHA1
  
  6001503fd991035db66533de8a0f648c8e6752a2
- SHA256
  
  9e6cf0db717e4c87595dffcd80e006748a8de57d2df15840f6cf30cd3306e957
- SHA512
  
  f6b578936ec30d2ee68c78ace369c7dc54cc4e1ee48f5f871baccadfa36d16e5ff223658cca1991da56a603f6fe6302e2eddbc379b88d9fcb7b8333f1ca29de7
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  JJS-UI/resources/app.asar/build/static/js/13.b038224c.chunk.js
- Size
  
  2KB
- MD5
  
  0347b32da5bc801cd220fbc90e579222
- SHA1
  
  9c43c246f40f2de2d37f570f209ef0743d80692d
- SHA256
  
  770a03f3563bf2631fe35cc2bcc11b8f4d666d4ba6d1bb4b384d3a573997c02a
- SHA512
  
  e73748c5a68245b0ac0eafaa540c96e409e77e5e3da2c58548bf88b3446b51f2e279a2a2bb583d63dd2a65608a7461ab261454a4fa44ef5d1e5c5826766c5bd2
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  JJS-UI/resources/app.asar/build/static/js/14.50781f2d.chunk.js
- Size
  
  2KB
- MD5
  
  7f03b76b0efc179ab2dc8d5edef0df7a
- SHA1
  
  022a79aa144effc924dc70712de31b6cc3647bb7
- SHA256
  
  0db003ad87cd0fc120012c0a65dbbd9ab0fa272b24ecc61922ff23a717970835
- SHA512
  
  209c5793d2d49fbe1f7b8d7cabf07e694eb625e12e58609fc6c8081becdf49320ac298521c867150342ab20708829f9a77eadcb6bde1492bed1e3126ba7a686d
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  JJS-UI/resources/app.asar/build/static/js/15.dbd09330.chunk.js
- Size
  
  9KB
- MD5
  
  df86190e6bf9b3598c928cf011ded1eb
- SHA1
  
  825cfb7cb5b9e82c3d76dcfc06c56256e366c96d
- SHA256
  
  a144d49fd66288df16cf654277bac8a1e9e1703ea0a2e34d56a16491fdedd15d
- SHA512
  
  50582965c8022b92737df96e8b9344a22004c46a62bcac76d2ad55691f286ec1f202fd23c97eabbda4f8c4dd0e2bc6bccf63c56ee49733ea3eea8f959f544a8a
- SSDEEP
  
  192:I97PYZLQ3xN//F3kxVrpHJJJbs+b9N1FhbZDbBPjwnIHUBT:I5PYZLQvZkxVdp3XbLhZtwnIi
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32