19e74ffb1c983bac0aa542286c01737cd22131d88275f6c0039752717173396b

Sharing

Copy URL

Twitter E-mail

General

Target

a2228392c57b086db1a2746604650dac_JaffaCakes118
Size

453KB
Sample

240817-l665nszflc
MD5

a2228392c57b086db1a2746604650dac
SHA1

9d6757fc3730c5f68ed28bf1690be13ea541a243
SHA256

19e74ffb1c983bac0aa542286c01737cd22131d88275f6c0039752717173396b
SHA512

de0dcc34972dca50ea8cdf6d53f61cf6cb240ae7ac36b82107b4056cb8038236980a8011011a6eeed55ffd306d86ada5b7150ed90e83f4430fb82255911ff687
SSDEEP

12288:4cDy4ItCTr5A3sT9FVA9+hoydwBKtjcezP2vssB:hCtCTrG2rgKtjr4v

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  文章系统(自动生成技术标)/1.asp
- Size
  
  41B
- MD5
  
  17f260a37a162f2f5a387cd38654f43f
- SHA1
  
  607af84ca86146533ee5bb36c6685e54a9ffe38c
- SHA256
  
  ab9eb170a66450ecbed190feee57325c5b39e1308ce6ddca2de7dada9c75dce3
- SHA512
  
  677071d572964486c055a24fdf9dffe2d32e91cad7124eaa7dfb026eca082a044d7577969fe54f16d5bb8652492df78b84b3a93872996e728ffe2c1e9cc95d4b
Score

1^/10
behavioral1 behavioral2
- Target
  
  文章系统(自动生成技术标)/CONN.ASP
- Size
  
  425B
- MD5
  
  a6ef5acefc4ba5419c1ad4545aebb8c9
- SHA1
  
  ae37fd2992a5ec40502de80c120234204e2f652a
- SHA256
  
  d42844d570ce4c8007eea9b58d823a1e28b85af89407f11f9227a9c3189a674d
- SHA512
  
  a746ebd556a3ded91e350b6f2f9b9aa27332b91c997422452c7bd5fe227c330bb4bd8459fa7ffc349049ade6351da684d84f1b3130d4008b355539451adcd39c
Score

1^/10
behavioral3 behavioral4
- Target
  
  文章系统(自动生成技术标)/CONN1.ASP
- Size
  
  431B
- MD5
  
  879189cfaef8e0814a390b1345a34a6c
- SHA1
  
  aadde019df64e22b993c714a21b0f8b9b0f800aa
- SHA256
  
  daf2e84e55f4a9b7e6a9c4d65f72245e37c914d73e6dfe25ef2c7d34d69b49dd
- SHA512
  
  0567f114d7504f116794c4917029d0cd2ab924566d00ea932552d670f54b182ba91015d47fa4f2a58455b92c5516e4a0a03c069b80a5afceca4c9427247148ce
Score

1^/10
behavioral5 behavioral6
- Target
  
  文章系统(自动生成技术标)/UntitledFrame-6.html
- Size
  
  615B
- MD5
  
  3216ba7b20960a0f8542fa1faaaa2fa4
- SHA1
  
  49421fb6c5b635da5cdda16e92a120e6d8b553d2
- SHA256
  
  43809bd240bc4bb0f4b86d17085e04b0e32b7cddcd07313643f7be2ead63ada7
- SHA512
  
  df751a447f4735251aa1ace606d5b91d5555c08da70fd49db74ad7923c21852c87bf6e5e58e2a42cf6179372ef0400793b89981680c32ee0413aa169fab25e42
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  文章系统(自动生成技术标)/admin/ADMIN.ASP
- Size
  
  2KB
- MD5
  
  bdb7cc18437c490517d5a3ec45df6b21
- SHA1
  
  c4ea7217fdd08ad6850f6486588d1de18e892007
- SHA256
  
  6da809f19cf00861d42989c5229f1e36a9f396c54b8d49af19d590342148e4e2
- SHA512
  
  88d6488c0bd7e3d3e371511eb90c4c59ac3e83a60683865f51997497243aad27eace88f8bbfc2b9e88ef440d13422f4b1dee7b1111d9de10b0a23dddb5d9a029
Score

1^/10
behavioral10 behavioral9
- Target
  
  文章系统(自动生成技术标)/admin/CONN1.ASP
- Size
  
  425B
- MD5
  
  6d3edeab39ac8e6715ea8c67441f5964
- SHA1
  
  f994cbcb20d3b483a16b9c072f90cba79a593cd8
- SHA256
  
  b5d80a6cc784029a2eb6d85f2b1007632dd0ea8dcf71bcd58890804ad0cf3058
- SHA512
  
  2ba9ef1d74de284e84465e7d739909021e69cbed29d2957c26274efa9abc495731e6f894ff1d91cc75942ab68b3374d440145d676ab937396c78b5f86d453be0
Score

1^/10
behavioral11 behavioral12
- Target
  
  文章系统(自动生成技术标)/admin/admin_article.asp
- Size
  
  4KB
- MD5
  
  e66c699e07701e946e7eb104048485db
- SHA1
  
  92b9f7a27e15ef1934928777ce1abcb68db3ca70
- SHA256
  
  26f3f0829ac495b51f1adb7608655602c88ac472a79ff014451b4bfe6139b30a
- SHA512
  
  49b9f04d033838ccbad7c88bac793bb8f682b9dc888fe06781952bf0c10cf40f17fefa4c6d53a137d43cf884515ab75dddedd2ec74db2ed01a5cbcc173b606cb
- SSDEEP
  
  48:hrFZvY/WxukMkaMXjxDbH8deimVpLJqfq50rpzmeEyGev0M/oUQ4UcN+3h:aWU/JabcsVVpLJ0oYpGG/o4BNEh
Score

1^/10
behavioral13 behavioral14
- Target
  
  文章系统(自动生成技术标)/admin/admin_article_addmews.asp
- Size
  
  1KB
- MD5
  
  370a015780a55efe701adffec8c59ece
- SHA1
  
  653f9771a75d494fcb2463417e06bfaa585bc916
- SHA256
  
  196444aa17c52b5180006634ea576004ef94cac3844defe555e2f807e49afe32
- SHA512
  
  783d816b3d6d40c00f5584dfec54a57198f072699a45c8ea3fd398f279be63623362aeaf2fc392870110cb990b982ff0058e658e2de95ccaa6d032f8fac672d1
Score

1^/10
behavioral15 behavioral16
- Target
  
  文章系统(自动生成技术标)/admin/del.asp
- Size
  
  206B
- MD5
  
  c06277dad83c15dfa7cbd484ad51b24d
- SHA1
  
  dc6154d8d9cae539cb18deb4e9fe5ec9a50d3836
- SHA256
  
  149e1c375085fc37eed336c22e03fa63fa556fde021dca48113f7e0d9a995d4b
- SHA512
  
  ddc5f233814d2c21d746171f6e9ff6911ad407a8366c5c7eee15e92cfc5afad4339cb54bd7c357eafc60657bc176f066e96bbd4e6699a770005c083ca4acc2e1
Score

1^/10
behavioral17 behavioral18
- Target
  
  文章系统(自动生成技术标)/admin/link.asp
- Size
  
  977B
- MD5
  
  7b1e93dcf7dee8f704d988621342ec4a
- SHA1
  
  c4e9abe0c60ab88f5f354f7f1651953b2171f764
- SHA256
  
  b763a6a25fb5d22d5735b7827f5f84cb14c110c9605312caf1c9d92e98f5f10c
- SHA512
  
  e92887841010dfc719657cd536b37ca4f2171f77ba61dd5216526e88e15f8a502bd62803fe8c373106f426e52d29a3e089a7e3c449713036c727dd3bb8fbe911
Score

1^/10
behavioral19 behavioral20
- Target
  
  文章系统(自动生成技术标)/admin/modify.asp
- Size
  
  1KB
- MD5
  
  6fd068fd5324f4b6d276cce12a7fdc4a
- SHA1
  
  8be7a1d5633847a5fe989f817330ec93e0179814
- SHA256
  
  d036d61e90a383fb0b3f92d3185f724bc42c27b3875d4500c464a31b76491e41
- SHA512
  
  32e9316f278c23020b891c38b2c32c51fc7b4cc6ae374828724a093568209fff86ed9b8f87991ab0e411073d363efd79736d06fe7583c74140114b269e261354
Score

1^/10
behavioral21 behavioral22
- Target
  
  文章系统(自动生成技术标)/admin/web/asp/browse.asp
- Size
  
  7KB
- MD5
  
  9bae61229a891e1114c2d2808c8a6676
- SHA1
  
  7f8d78c027c93ad82d834918e85fa614a579d3fa
- SHA256
  
  20611e5128d48e21f18033f82d6733dc448945f30a0b4fb50e65fcfb1048e375
- SHA512
  
  c7410e169f2f24deca9ebf99f0e8b8d85d0bce80785ca982e4a36ca77afbff811da1976d27a095f78e24ac422557b28ea9fc3cb80ba34d8c3546d41ffa1e5263
- SSDEEP
  
  96:6b26XgA5t81hpGI1bxuei6HKnyLbyypX520ySEmPvP5FywFddfI5wiZoKKTsSeHW:G2WgespDBi0N//sSSOApKNO+
Score

1^/10
behavioral23 behavioral24
- Target
  
  文章系统(自动生成技术标)/admin/web/asp/config.asp
- Size
  
  13KB
- MD5
  
  5317b594347e1509e90e50a73787d5ba
- SHA1
  
  77eb35c6597cb63999a0f765003acb729eca5498
- SHA256
  
  00f79737e443f4a123e7b6f96cb8a381b426bf6d65beec43b8578ee2af589ba5
- SHA512
  
  05d17f2468f8ab43b6bb63ccc5fd5688e8191ace4bd5fcc0259987e859fcb3e970825c1187cb1b06c5ca6a3cbcc419f032a139d4b0590eab829c8a6aebe04dcf
- SSDEEP
  
  192:ZriDDRfoeFfQs4neFf7l03aeeFfD+4heFfA4deFfq4ReFf34HeFfV4JeFf34TeF5:Zru9fBQ0mIU6Mhddxqm
Score

1^/10
behavioral25 behavioral26
- Target
  
  文章系统(自动生成技术标)/admin/web/asp/upfileclass.asp
- Size
  
  4KB
- MD5
  
  145a21ad6676c6859b45375c4da554c8
- SHA1
  
  4e4db56124adde4ad12eeb523cb5cc5cd2060d8c
- SHA256
  
  42de3d98a877780e63c50568442e4436cc024d91647f81a22a1b847c6f59fbee
- SHA512
  
  499cf5da2799eb5ac9663e080c4cafcde123f23a9c9874be4ed00f3609f3e9546d962c605a4d917a30389deefd8f1abed9b9fc46ffcf3b4986f08324475aaf11
- SSDEEP
  
  96:1CkKS7pd7VNF5q9wGJErjIVKgh45Ldwhx58p:1CkF9hF5W4G58p
Score

1^/10
behavioral27 behavioral28
- Target
  
  文章系统(自动生成技术标)/admin/web/asp/upload.asp
- Size
  
  17KB
- MD5
  
  3e53965bc87b9a513731de5f5df50ada
- SHA1
  
  54ad2d1b31e96a8003cd72e0b924d07e3cc2ac26
- SHA256
  
  17c36e51ee25c64e96175f0e14df8dfa79f388a6c12ad84cf8def7704e5f97d8
- SHA512
  
  f9a35eb2e73dd652b892f9b174010948807a5aabd07d865f77cc27d9e3944d97c2a1b92bbd51f6a6906a12fa957a5d8bcda5dd6e65fab714b72d054a468b7477
- SSDEEP
  
  384:c4ZD1OtLgOdRV5JPDKkxFv/z+4NgGRbFNt:aN5JdTlgSt
Score

1^/10
behavioral29 behavioral30
- Target
  
  文章系统(自动生成技术标)/admin/web/dialog/dialog.js
- Size
  
  5KB
- MD5
  
  eab78484f585be51d1972ca8baebc4ce
- SHA1
  
  ddf6257f8bf3a041cb0cc1bb63726e8c34878566
- SHA256
  
  b71b731a36d048c1bbb72898f44e95f6d00b9a059f190ad1c121f259b02abcd5
- SHA512
  
  00a8a488808cd0a1e963ec609a205e7e88dc3b78865f993d461230701e7aba25342061604abb87f3773c507da0df23c8b4cfc118642205f797161d8764fa5c1b
- SSDEEP
  
  96:brevpSyilCvSiN7HCvz8H2/6eSU/CXZX7ovJT6hsRbGKnxlb0a+oF2JIPLSjydon:+vp7OCvFzCvz22/dSU6XZXyzdHF2+SXT
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32