296852253623b4ae5f22dd74f05d9100a615138ec7862dc02114c2441885fc37

Sharing

Copy URL

Twitter E-mail

General

Target

94b0b2735f841f08211b0edb4acb7e98_JaffaCakes118
Size

6.9MB
Sample

240813-zn7v5swamg
MD5

94b0b2735f841f08211b0edb4acb7e98
SHA1

8f860eb97d68d7d2cfd74673529b93e118808e44
SHA256

296852253623b4ae5f22dd74f05d9100a615138ec7862dc02114c2441885fc37
SHA512

0265b8ae04583cc18074f9a6e340e2c8ff26a397feccf268ea148d6319897b22eb537bb06defab20a978b131fdbab33a16fd68a5cbbc2270d62b685c5c55c68e
SSDEEP

196608:Y2VeZu7wbd+9UBWQzZ30sKdtqg1gCQAVMht7c7Rzw:YuMu8bw+BWQNEddtL1XQASP7Yc

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  wwwroot/GetCode.asp
- Size
  
  34KB
- MD5
  
  82298a91a13c1cf54642d1f6561ca5e2
- SHA1
  
  21d2dbbdaeb045103cc1f16c2e275808282da713
- SHA256
  
  dc65d5a5e5e50ac76d37dc5692f8a7fb09be5256513970c1ead68d3bd30f3c05
- SHA512
  
  b368a908de1af76a1d1b8e4b983867f8aa5ce036423c5e1599d631f78833ff44d64ab8369273e13edc2e3ad70f9d929d87f69e51ec87458b1ea4a6a978fee5cb
- SSDEEP
  
  384:tAsVNZBohvIAnhtlfkh419hxLJRRG2Dj7B7wrL/ajb55ZhS2GBf7t04r:fB6gAnhfPGcw/kb55ZhSNf7t7
Score

3^/10
behavioral1 behavioral2
- Target
  
  wwwroot/bottom.asp
- Size
  
  425B
- MD5
  
  97982b4ba0896c8ae0eac5a1ae303c6b
- SHA1
  
  a09d3ba796005dc0e3eba3724728873efd3f67d7
- SHA256
  
  9527d9403503d377330983eb9fe161a31f8fa81aecb415bafe256314306fcaeb
- SHA512
  
  4264e61613e45ef2d68ae8431d85a672ca0f62c15a600d0b31c462b38415275e2dec74fa934dd7641d33976964ef027ed6fa65737b858fa0e8cc1b50c0e46c2f
Score

3^/10
behavioral3 behavioral4
- Target
  
  wwwroot/check_login_type.asp
- Size
  
  952B
- MD5
  
  8005789c0b6c3b72ef1bf2aff4fdb231
- SHA1
  
  5cb8032631395e1bfa507f2326e3a16dbcabd357
- SHA256
  
  f9a05e5b07401c9e123fd54d60474c24ae6c0a6bf58559cf68e9c533fb375520
- SHA512
  
  5077df249b831d37aec0573bed6bdece0cf5d4b4d663b6ea085ff6fee4fd6252110e9f420cc16eb8faab5695f2b5e495eeba75aea62dc1fd9bb5f98f3a14b0ab
Score

3^/10
behavioral5 behavioral6
- Target
  
  wwwroot/checkupdate.asp
- Size
  
  1KB
- MD5
  
  1a419d54053cca14157a5f48f0104bca
- SHA1
  
  839adbe97cee16ae7dfc33b6324fb3c2b08b7890
- SHA256
  
  ad6324ca8035cad2292a7dc5afa09df06a84dc143a488984eacc95052b082719
- SHA512
  
  9570dd13ed1c22b839b0d1e311a966b51b7bc2832bdf736bbc59a51a75a2cbd6339214698e605b472ce7b70d12dcbb449cacbe2529c85e2303584fc403a18447
Score

3^/10
behavioral7 behavioral8
- Target
  
  wwwroot/client.asp
- Size
  
  180KB
- MD5
  
  b7c4f668a351e235d0f44c12211c815e
- SHA1
  
  1122abc2eb5db2f3f7ccab6fdb8bf689524e3ec8
- SHA256
  
  99e9641731c608f6accadf70b950dfa8a79776166daa5e8f5317d8b7046b332f
- SHA512
  
  5a1f50afbdd24cf56ccd9da1c8f10235091566e7a68fabe8c65d5891edc002ca1d2bdb444e827e00d0938849098652b33d21150ecee3e133484e9042b70ce776
- SSDEEP
  
  1536:SizQCpCt7k/yEd4nO/6UWh3D0jnIM3b9K3:SizQCpEk/yEd4nO/6UOD0jnIM3b9K3
Score

3^/10
behavioral10 behavioral9
- Target
  
  wwwroot/crm/1.html
- Size
  
  18KB
- MD5
  
  825946fd46cfdc5eea7ee923f0753500
- SHA1
  
  1ff8b01892bfb43a13e8f7efb2392052e0020dd2
- SHA256
  
  f4dcd1e0ee7a7d2fff5627d12cebe9e55fc2e31189dce8e49cb9a1c2f8e380e6
- SHA512
  
  5f5575c2402ddb9031724184c63941867b9a50abf72e54e52c8af64d5e8a404883bb5592cf825337e4b179423230975e07bae1b27c0320c27746c6e6299e77f3
- SSDEEP
  
  192:XztjMBI7BOHyaNbAs8s9UsVORJO5lVBD81QGEm6X5BScEwFClf8YCDZMIH8LoX8t:jt86OHtNBDRGE7BScE2Z7ZMs8UX89dpb
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  wwwroot/crm/ChkUser.asp
- Size
  
  61KB
- MD5
  
  adb0092072c5791c416f6bad97005572
- SHA1
  
  f175979424f9d8832f296673cf292a0378bcd10a
- SHA256
  
  c9b14e2c37dbadce9f32fb7f472af57cd7ae18b1f55716b57d45fec450c714aa
- SHA512
  
  8cf8cf817f40c3fa74115ba7ecb64e8079b163ab364bded6cf0122f5efd49bb5f8ed3c4b7fa36c8afb1aceb63063aad43673a85f7e050d473aacd89ebfc96cb9
- SSDEEP
  
  1536:Sim1YxuXMj80AQ29ALl4St0hYzneJTKYEuwMGmeDYg6f/D6Ata2oPF:SNsui80Ah2LlrmhATLMJe0ZD6At3oPF
Score

3^/10
behavioral13 behavioral14
- Target
  
  wwwroot/crm/Email_content.asp
- Size
  
  35B
- MD5
  
  0d69838606c5d14947ffc3f9f97ec133
- SHA1
  
  8024d1c3ea1dc5a7334232c74cf2035a08f4cd78
- SHA256
  
  ed9382182fc64d774c7336b909e7f97cf7641697394964109ebb10185cc674e6
- SHA512
  
  e050b3c925721a1221e10e4f5e0bc5cab1ccdd12d1bc0317e024dd569134150676f4c106bd9c564751a8a5b34821df032263581bacbc5cd6035e4cda9542d6ad
Score

3^/10
behavioral15 behavioral16
- Target
  
  wwwroot/crm/Email_exe.asp
- Size
  
  35B
- MD5
  
  0d69838606c5d14947ffc3f9f97ec133
- SHA1
  
  8024d1c3ea1dc5a7334232c74cf2035a08f4cd78
- SHA256
  
  ed9382182fc64d774c7336b909e7f97cf7641697394964109ebb10185cc674e6
- SHA512
  
  e050b3c925721a1221e10e4f5e0bc5cab1ccdd12d1bc0317e024dd569134150676f4c106bd9c564751a8a5b34821df032263581bacbc5cd6035e4cda9542d6ad
Score

3^/10
behavioral17 behavioral18
- Target
  
  wwwroot/crm/Email_list.asp
- Size
  
  35B
- MD5
  
  0d69838606c5d14947ffc3f9f97ec133
- SHA1
  
  8024d1c3ea1dc5a7334232c74cf2035a08f4cd78
- SHA256
  
  ed9382182fc64d774c7336b909e7f97cf7641697394964109ebb10185cc674e6
- SHA512
  
  e050b3c925721a1221e10e4f5e0bc5cab1ccdd12d1bc0317e024dd569134150676f4c106bd9c564751a8a5b34821df032263581bacbc5cd6035e4cda9542d6ad
Score

3^/10
behavioral19 behavioral20
- Target
  
  wwwroot/crm/Email_send.asp
- Size
  
  35B
- MD5
  
  0d69838606c5d14947ffc3f9f97ec133
- SHA1
  
  8024d1c3ea1dc5a7334232c74cf2035a08f4cd78
- SHA256
  
  ed9382182fc64d774c7336b909e7f97cf7641697394964109ebb10185cc674e6
- SHA512
  
  e050b3c925721a1221e10e4f5e0bc5cab1ccdd12d1bc0317e024dd569134150676f4c106bd9c564751a8a5b34821df032263581bacbc5cd6035e4cda9542d6ad
Score

3^/10
behavioral21 behavioral22
- Target
  
  wwwroot/crm/HtmlEditor/Asp/browse.asp
- Size
  
  8KB
- MD5
  
  3e1bab497358c0caf3d7555f9b5727ef
- SHA1
  
  604515ef9443659c558379ab48f0036db814f794
- SHA256
  
  2b29465830b36e8236c338d3d0f650ee78143bb3bd00515c7b08856c04ac7439
- SHA512
  
  52e33ae9ff5b6006c13cc5c672a59eaadc211dacaecd9c0e517ff7e540865f356c3fe308ef4b49bf5110e514f60da5263a697131c340b04222cc8b1cb870a097
- SSDEEP
  
  192:OOjRZk4NTWN/8hO71c75DnU2x/oZvqYWqbqQfSrcu:TRZNNiNE0Sou
Score

1^/10
behavioral23 behavioral24
- Target
  
  wwwroot/crm/HtmlEditor/Asp/config.asp
- Size
  
  3KB
- MD5
  
  bd0ac321b74f944dc667e2918ec01545
- SHA1
  
  ef1da35eaf8c836cd943a180e251ef9eea52b63c
- SHA256
  
  30bc15892b2624c7718d70997ce124c0d731cfb15901a91c230fa2cd3ebc5169
- SHA512
  
  7d975d3e877eca31d534be68ba107b570ca63aa85cc34190740029715988e25c31c77edaef4d582c1f748c6b794cacc9df987088687567e0f7b3862938c7e5ba
Score

3^/10
behavioral25 behavioral26
- Target
  
  wwwroot/crm/HtmlEditor/Asp/i.Asp
- Size
  
  7KB
- MD5
  
  2a7ce0330603a54bc76fa78837bba694
- SHA1
  
  c3606a1f1d849f33786f2a94d53dd5fb260474c5
- SHA256
  
  1208ae56e2264b391b0932d6c1522eb4af86d404d3f0888f8942026a051bdc41
- SHA512
  
  528badbcb44ac9c3bc609408ac151c709cd2de47424863d644598d948d57af5b3c3374a06090247d20d70aa14b179dfaa3b5ff2fb7f2af73d00ea34445b54f26
- SSDEEP
  
  96:uGFCaFs2AZ24xphoCvuN7fwTTUXnDjq9MbyrrVvUkN6FxshVTsPd:uoCaa78cvuN7MCfF8QFqnIPd
Score

1^/10
behavioral27 behavioral28
- Target
  
  wwwroot/crm/HtmlEditor/Asp/upfileclass.asp
- Size
  
  4KB
- MD5
  
  07be720044219f181e06b8c7bcba1cc7
- SHA1
  
  d8a152c8710dfeba91a74e212477536ae005a333
- SHA256
  
  d59ae652681d0c87f09d742038bf6db04b0f62c5615e6b848a65241ce5e68040
- SHA512
  
  1b904d709bb0c8255a348c5942e42f4803d42a3511db6c14e4dd331e67d37b3f428e9b609fcb3168cbba40e71bd3073f11b12a90974f6240b852e5674b772958
- SSDEEP
  
  96:EI4CVKs7pd7VNy5qWwGaErjIVKgh55LdwhV584:KCVL9hy5S5k584
Score

1^/10
behavioral29 behavioral30
- Target
  
  wwwroot/crm/HtmlEditor/Asp/upload.asp
- Size
  
  18KB
- MD5
  
  17add72c9e4c0b9444d387b48cfa03e7
- SHA1
  
  a25f06b5007538ddfb201a4137e9d89c16394e7b
- SHA256
  
  0caf1b8fea206357ce3c6dfd06bc74fc2b32f966abddf1f6dd9aa04d52d1fe61
- SHA512
  
  3a52cc471ca9cad32ec90df458988b858e926eb1a740251b021ea2c0f6d82eef44fd4ed2ccc018391b30f5012d3726d4ef8cf1881cbe3ac4e8b68ce794320b99
- SSDEEP
  
  192:lyALYNFLmJAbsYHJp0OkUF6CnqL3EkqFuvfHlcIa3S2rlDljMNPWs2WNNc:QNqAjphF6CnqLaFuv/lcrxlgNPWaNNc
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32