ee86ec03ef8b5b5719cdb6b7c2d36ef160144ff2eb3b81725890ba98c39deffb

Sharing

Copy URL

Twitter E-mail

General

Target

8b3c179aba11b85694f438ee10fd6a28_JaffaCakes118
Size

4.3MB
Sample

240811-vpwgaayenk
MD5

8b3c179aba11b85694f438ee10fd6a28
SHA1

808dfc7abf673b67c1634cfa3dbdec96a5f507a2
SHA256

ee86ec03ef8b5b5719cdb6b7c2d36ef160144ff2eb3b81725890ba98c39deffb
SHA512

ce64c9332777c923fee7a1d02cd9189b459a2564704589f8da8046840afd36871d9e173075f22045f4b596a6ea39e189a5a94386fb60a1e01b7526ac47184eef
SSDEEP

98304:P9RLnMyCqurmQyBCC//QvbXMDgV3sjTM6Qb13CsR0:P9RLPCqsnCiXMDi3CsS

Score

4^/10

discovery execution

Malware Config

Targets

- Target
  
  LiyuNet/数据库/鲤鱼论坛数据库说明文档.rtf
- Size
  
  324KB
- MD5
  
  1d08deaef754d0a57d841690b45e8c03
- SHA1
  
  d2cee06c20478a32d32d5f9935073043d89b20df
- SHA256
  
  1a11c807b37c319b7550f36ddc7b24386e0329bbaf93de39eafab3badd9d4219
- SHA512
  
  63ea39db20de92a5adc29385cc5d90fdb2f5a8af6a1cf05f89e33cf6b81606ed2e8d3557056e53ff06fd8bc1bc325b8a98b71607b3bf8f84a1d298f3bd68f065
- SSDEEP
  
  1536:jKWjdWyPsBHr59D8sq8efasWJ/1A2rcB6yVht2xq+aQFv2lNfv4bWRGXRgUbiEie:2mPOKa/Y+xaZV1gmTixZ
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  LiyuNet/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral3 behavioral4
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/activation.jar
- Size
  
  44KB
- MD5
  
  e572d641d75591410838be80f41bbd97
- SHA1
  
  ff24ea1055532c7f8b40c333990792f57ac175b3
- SHA256
  
  df7172ddb6bc9944acb26255e645081528853cdec36039a2d9d3369566dfeb78
- SHA512
  
  f4ee3df0db6cb365530247cd55883b09afb09a11b94329b11773bb8670982bde1e30a6a5e40ed03869f30c1ef0f1418a5acabcc447f4a5ba1a60e012f39c920a
- SSDEEP
  
  768:Ap0zHTiSZLTYQ2pA8G3/X19/EJD6mt3OKclm25/m+GxySOtgTtOSxzA9OHb13pU:20zH+ILkQ2p5G3NFWDkKom21mJYItFp4
Score

1^/10
behavioral5 behavioral6
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/c3p0-0.9.1.2.jar
- Size
  
  596KB
- MD5
  
  45db3fd891e1f22cc90109ac7e473c73
- SHA1
  
  4ea71601f844c4b90d22195bbdb58979281bb8b6
- SHA256
  
  2b816923ff35675557618db580b5eb202c2cd79b4cb6018fd2c9b9fc15af88cc
- SHA512
  
  22922c047f1afc62ae06283dbe7479814814d764c62ff1a1b3b64a211bbfdb50d4df23c2cfc130ddfd227aaa3703eae9b4d9d620edf9ab401a2e63f6a79afc84
- SSDEEP
  
  12288:HSZvPhB6AN6GD/PeeKuhXoEHZMbmofCpc6JFgFIZ9MmMtoQExVVWy36FWC:SOeHKPEVpc6wF+9MmWfEWF7
Score

1^/10
behavioral7 behavioral8
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/commons-logging-1.1.jar
- Size
  
  51KB
- MD5
  
  6b62417e77b000a87de66ee3935edbf5
- SHA1
  
  ba24d5de831911b684c92cd289ed5ff826271824
- SHA256
  
  9e8d01f172301b966f1f404aa6fc0bdbec478ae9197256ad95bfcad1ef927601
- SHA512
  
  5e8b069406c05148555760681417a9edabf40b0c807a286262bc449bd5ad976e3715c0a05ff941680f73f83962321ad0663cc8cd414537a1326658d00d5b6630
- SSDEEP
  
  768:/irgQYt67vQFCweaImimN8v+iZxtR7qWQOjiBn8KhfKfWRyUU8S74uUHnSadTvh6:KTV7v7wea2zZxtRuV4U8KweYU8Gyax6n
Score

1^/10
behavioral10 behavioral9
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/dom4j-1.6.jar
- Size
  
  306KB
- MD5
  
  5e472f451e89b64c089728fc51b82920
- SHA1
  
  529555dd4d3872a59f5ac214cfbe8fe1339c271d
- SHA256
  
  9d9d1a1d41eba5496a08ea9dabb617916710f3c102061ad33a2b9ca0c6ca7074
- SHA512
  
  eaae029c226d7269098473f4b11f0ff51eb7863a117631d65c0a18713349e7fac613cb46e147c52f1ddce686856987f0d379d592fe08a6cac11b2ab3d389bb9c
- SSDEEP
  
  3072:IucMGAnXLkYeceC6pZGxyByi6fGPJ+yl0pxzCHGYqkp1CIY3tRlk2O9Pnm4gMc+2:NLkYhiuOt6s0ylexzCH/yp0PnZtdzDM
Score

1^/10
behavioral11 behavioral12
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/jaxen.jar
- Size
  
  233KB
- MD5
  
  c153c4ab878f6f05961bd140f306e414
- SHA1
  
  5068765aac584432b0ef144f9beb8d0988365119
- SHA256
  
  60ae8892590aaaae89c2c8525eb9069aee8d2f10c299f9ca92cb7d7767894578
- SHA512
  
  bc51a43f45235612fdf238362453be8dea1bdda7847a3dcc20fe2f4455b3ed3b9ddb4da9dfa68bd64b22b1c002c8d53c1333bdeb269164c022b41c7460898878
- SSDEEP
  
  6144:jvJ5fldMBgytgVPLjLBxgb7W3ze++pyQX9DjSbt+F4:jXj4t4TjLDgb7owX9Dj6g6
Score

1^/10
behavioral13 behavioral14
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/jtds-1.2.jar
- Size
  
  278KB
- MD5
  
  8d3457be7178103ac846fcf407b6e559
- SHA1
  
  7226a1dd5b85779fcdfc45c9092b8c1fb7ae1711
- SHA256
  
  f15b06e9a5d543956c333a585778a7e223d1edb33c5aad35be28f47c3df4358b
- SHA512
  
  0ab446c73133b8549fb4d9fd5eebee0a0b65a8d2f3a62b70455d09023a23483efa5e8c4f825a641b4e10f6d39d08b6ce21919606767847c042fdf7340bd5e357
- SSDEEP
  
  6144:iQuZx6qAt6eCYbGlCX/X0ePOH3Qza+G/MHftFtliChNG:iN6tElCX92HAzzWMHVbMqNG
Score

1^/10
behavioral15 behavioral16
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/log4j-1.2.14.jar
- Size
  
  358KB
- MD5
  
  599b8ba07d1d04f0ea34414e861d7ad1
- SHA1
  
  03b254c872b95141751f414e353a25c2ac261b51
- SHA256
  
  e3bff9ab64a09b1ac2800f3b5fb1e3d99728064acb6dd3924938507638a404fb
- SHA512
  
  7b6b7bddd05a6f3e911b277527d31be12c4339aeb2d14177286a1bf533ef39d203dd48102b92469b78e03bc85a699e20aa2332ec06966d6dc95fd8953462df37
- SSDEEP
  
  6144:43MrMnrcc81WcTme6ROLzwZc2EJAA3pglNqMyCbKOVPoPCQ0SZUaB0r0p2wLu:6wucfIcTme2XnEjglNDtVo67SZUt0o3
Score

1^/10
behavioral17 behavioral18
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/mail.jar
- Size
  
  274KB
- MD5
  
  066df392cbdb80a43ad4361cdca94e73
- SHA1
  
  c00c3d424758dd048c12ad527b9295b3fd44c7e6
- SHA256
  
  b57ffeebb4e4effefbd5ede2100e6e384ff1d295c6f2c87963eb929277932651
- SHA512
  
  65717480026ef9100befb0e3e44644366178993d300824bdbf2aa77b566827083523ee269cab7beb448786a09fdaec5e72b5565300a780a70d82c840da83617c
- SSDEEP
  
  6144:ceaPYQQLLYsL12rO2bwPhFrL/wusbWyzQ5X2i52bHl:ceahQoa12i9DrL/uWyzaX2D
Score

1^/10
behavioral19 behavioral20
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/mysql-connector-java-3.0.17-ga-bin.jar
- Size
  
  240KB
- MD5
  
  2980118b5373d96577da0e551d672479
- SHA1
  
  3d8b493d12562fc904a947ea7b84394fe67e8a55
- SHA256
  
  42591f8c28d17714462312cf8382f0d657fe44f7bc24834a437e268741eac7e0
- SHA512
  
  9bd84c009afa5d827433cba80b552deb99eb55f1928f7e7588d0d3811d57473b25de7b49b61a64c6c2b3435e961ca4afa0e9c49c4a68a34823a3800adb8f2b3c
- SSDEEP
  
  6144:wljcGvL4zgPLEKJqZUvsyuRMrdWEM9f05dFaFKUIqQLyfibsHlDFYd:wljtDG0EyuCrdm9sfoFKUIJLNbsHtFYd
Score

1^/10
behavioral21 behavioral22
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/oscache-2.3.jar
- Size
  
  120KB
- MD5
  
  1ea55fb297af16aa733064e63e58b1c0
- SHA1
  
  e8e5a66ffd8a9cdcf8085fb82e9e4ee4bee28814
- SHA256
  
  a9a5ea0a376bb11515c10cd5141089c81245c350ae9d164036c661d27c897248
- SHA512
  
  2e8db9fb6e1a79eff47af690b4972ee74d1b71ac4efa83ec28b965c30ad83121cce4089419bd272607d21ff916838daacaeacf3c94c6780f370ac7f36c099995
- SSDEEP
  
  3072:bqz0gOiplU2Ds69jvV6gIfdb3wsea8QGCMTWs8qROOiOxQNZ4eMc7etKB8TbQ4wh:b2Lm2g69jvVnIfdb3wsl8QGCuWs8aOOS
Score

1^/10
behavioral23 behavioral24
- Target
  
  LiyuNet/论坛应用/WEB-INF/lib/proxool-0.8.3.jar
- Size
  
  464KB
- MD5
  
  74530c6ae82a445f6dd19b7d99f52a79
- SHA1
  
  e6867ba5b64e9fa4ed8c33fc89887105e90d003b
- SHA256
  
  dfde2c0f4decd8683304ab65e0b1393ff04dee5743dd20239ac6acaeecee5d9b
- SHA512
  
  2f391d203c18207edfa7b72b661b742bd1b6e233a8fc07cbf11e90b6566af5a393f76f3eed955fec0ecb31d298bbdf738f37677b43b8a3f7fc5ae6df21e6908c
- SSDEEP
  
  12288:YJSfYOzAcC9OQrDonMm4FLIFHWoS+E2Vl5vTwliBY:Y+YO6cQrD+4FLIF2TMdTwoBY
Score

1^/10
behavioral25 behavioral26
- Target
  
  LiyuNet/论坛应用/bbs/INC/error.jsp
- Size
  
  822B
- MD5
  
  e5624c28b669f65e72d9f303ee66f4c9
- SHA1
  
  91110ed41cb02c24362d1f5d740ae039fc6fc0b1
- SHA256
  
  466e3d42cfea3fb99891fbf3e8bd40bf6394923cc164c5945436d32af3e036b6
- SHA512
  
  a3e22f50de3021c9d20aa2177c4f0f15792ec3a9c1d3544f803865908e341cf85f1ccd509f4f9fa053e0e82b616c809ab0f357c4d484ce380a2bf4cfac2f8f99
Score

3^/10
behavioral27 behavioral28
- Target
  
  LiyuNet/论坛应用/bbs/INC/forumList.jsp
- Size
  
  846B
- MD5
  
  9545d0ce53b780d5b6bc6fe72b03646a
- SHA1
  
  850c3ff22c19e8067262be2efb28d65fd1cafbef
- SHA256
  
  3c7c915ad6e6ce9c8b6daeb87095eade9350ab7405a8941cfbc007291222e038
- SHA512
  
  d05d4d217227b46b8f007251dba8e75b15a839e84789cac1ab91c42a4d9f5356af3447b0ad49513ad441abd4d3db1d5b965b04b870ab65b40a80a05af2a80b17
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  LiyuNet/论坛应用/bbs/admin_html_act.jsp
- Size
  
  517B
- MD5
  
  734fd6e9f92233ec4c2695040c2b2aa1
- SHA1
  
  fce8b335853652bae1c27d1d6e63e8e25136c1d7
- SHA256
  
  8610b9106e2787ef6aeea2d9e83a5ab9469838fb40fb19f31b822cfc60371cd1
- SHA512
  
  260dcddb45a70865aef5723aa7f6bc972023b4fcdcc3c5a038f23c65cf654b5d634f7818a77b0405175adfee8d431ecb9be71ef93c16b014690f2fe540efa86d
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32