e59dc5149c92283dddb8ba191d984d44f08379f97736b19fb0666927425d42be

Sharing

Copy URL

Twitter E-mail

General

Target

ab768421fb876657ae3a9f031c7619fd_JaffaCakes118
Size

18.2MB
Sample

240819-r9y65atfpp
MD5

ab768421fb876657ae3a9f031c7619fd
SHA1

90035f732a8cc88ffe2a382761fbe1777e84474d
SHA256

e59dc5149c92283dddb8ba191d984d44f08379f97736b19fb0666927425d42be
SHA512

b51c48f1c9230d0537df3ddf2eac689929e34947de9644f3c423747f5f0d50a8c3da255b4e634b7bc542e12f6a300312e0cb7204d4489c32bf7b37d5b5c86306
SSDEEP

393216:qd3w5dW7hatIMWglpURTzqVcJYcl++FqUfGg2P/41xcdsLaT9Wtlh:FCRMWvlHp++svgu/41xcdXTO

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  doc/动网整合注意.txt
- Size
  
  1KB
- MD5
  
  7e4a10058bfe3cd7671c03b78041d9c3
- SHA1
  
  6eabafed46bf3fc5703d78dca4d581bb0da2a065
- SHA256
  
  107abae5bd34d08ccf986162f51e8fd75e99a2fb763993db0f7ec7cef9ef6807
- SHA512
  
  52b85cca871e0ef1480042acab3a77d8e23c23f117b55da31c2e46784b10fbf2956e985f73edfd941d5468687627c2ab5e9dbc3374f36e693798febc13fad4b6
Score

1^/10
behavioral1 behavioral2
- Target
  
  doc/技术论坛.url
- Size
  
  283B
- MD5
  
  25167df52bbe51e66ca7ce9c14347970
- SHA1
  
  9973dbf1caa429ef5e8bca591956a4c635304899
- SHA256
  
  4cd5052deadcd69357c1dd8e092fac6385c7613c8c0cdd4accb5ad7160d79aca
- SHA512
  
  a39274a9f9557540dc25905adf2af86141328532e6ff41524fe42ac8167fdc6e56d25a67cd0630669ad38c61c296e42177983bd5089b9ac0a6eb43f354fc548c
Score

1^/10
behavioral3 behavioral4
- Target
  
  doc/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral5 behavioral6
- Target
  
  doc/网人科技.url
- Size
  
  283B
- MD5
  
  cb19b04af4ec95a2c52784fdb882a38b
- SHA1
  
  67a4468d7f6d62091cef1ee30d64ec7d19a5e2df
- SHA256
  
  6accc17bfc6cdab3e91d59fe222dcc65c77b07b2954a230ef076aaff12e421da
- SHA512
  
  698b0a82ade0b71bdb2c3d60142a51e098d381ad4930c689127e52ab80755bb1b45f31361057ce5770f3ea09c2ac888a7c8005b4f9bf7e59c217ee7f1b7c4c9c
Score

1^/10
behavioral7 behavioral8
- Target
  
  tools/会员同步工具/UserSynchro/Code/client.js
- Size
  
  5KB
- MD5
  
  985ac19d5c7960dc5999164880de30ef
- SHA1
  
  05ccb732a9ab9a32fa4102d675efc5fe2c568b2d
- SHA256
  
  3e97f1b11817689df91a874b3262e8bf41d45bc0966504f90b1c00ac3a43ec6c
- SHA512
  
  76c4e9769b141f617c6525a8a6db696445b8b2da58d9a5d23045d0696478076e11ac08c17ea4784d4bbf80d4de9587470a19b2a77879502801a4f3afce8ea159
- SSDEEP
  
  96:yxOBs+IEErWRlMou+THH3g+936s3DB4iUFre0aUi3EW0wU:yFE4W0ou+THXg+9KIUE9Ui3EB
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  tools/会员同步工具/UserSynchro/UserSynchro.asp
- Size
  
  28KB
- MD5
  
  423af289ba76b2619c1a5cdb8ab38f8f
- SHA1
  
  c5b6b1fb5e7dc74cf559cd7a215cba0504bd0852
- SHA256
  
  381ca44023bd6d95ee61de33ba60041651bfad544df9c1f0f8a853f7c538371c
- SHA512
  
  4984d083823606bca98e1514a4abc98e005f10f6a66cc35ecfd5a9f970fda00babb39deced60c5cc52126f1d8feffaf57ce5d855ba07bb0f3ceb7de619244fc9
- SSDEEP
  
  384:0arPA94t7MIXryqKNzAmXNGH6roWOk2LlpXfQKi9n5btQeI1:t7nLMAia4Sk2sfn516
Score

1^/10
behavioral11 behavioral12
- Target
  
  tools/会员同步工具/UserSynchro/index.htm
- Size
  
  9KB
- MD5
  
  51def64323870d73db57238a5985f735
- SHA1
  
  3b0669da5a70f344e021c8cc3c413378e8353f4d
- SHA256
  
  bc43ed717cf7e9b3b2b94a0d584f5b4e281a7c4257966678339415a90113bc76
- SHA512
  
  275ed7bac05106e048430a984fc097bc08234964b263720fdaa7276356e7767c516c7aa9468c00f09a04f10d71c81af629a5dccf8c712397e6b47d968f8b32f4
- SSDEEP
  
  192:SLf9pdUl7jq+IjATwsOA2FxQo1FWgh0aYh:SLffWl7jjEATwsO7xh1FWghV+
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  tools/管理员密码重设工具/Admin.asp
- Size
  
  3KB
- MD5
  
  a0ce19d638a1acc9be0f7f41f702aa3c
- SHA1
  
  2033787fc6e687e8dfa27c34d9e8597094f132b3
- SHA256
  
  b3c174eeca33fa6bf2cdd8327e2ced18c7d483c87038b7fac745cadfbd750d3c
- SHA512
  
  6a752112342ac1249ff19125bbbd26155b184e6556c4add6baa1d33f8fd58f2edd27d3a74b093040f75e0e4074394b727df92746a9fe62154998d15dcf94f7b9
Score

1^/10
behavioral15 behavioral16
- Target
  
  upload/API/HiAPI/API_Config.asp
- Size
  
  1KB
- MD5
  
  0ce73bbccb6cbfa94d08fb86e7519448
- SHA1
  
  e170f9ccb25c5733c035d049f57a9f39c00f24b3
- SHA256
  
  db19f94eb9d4b06f12327f2bc94858dd833418aeb07054627a9aa14d24884875
- SHA512
  
  4e3c52ab18850b39377a50e8f899d8d5b67c5259445c8336c1d20b6abc3c4fb894e3def6e2c4c392b74192797752c90f9097aa85c0202da5dd1bea85367cccc6
Score

1^/10
behavioral17 behavioral18
- Target
  
  upload/API/HiAPI/API_Response.asp
- Size
  
  11KB
- MD5
  
  e254c7424ec833ee944de7887cd484bc
- SHA1
  
  3a4cb1d2cd037ac0ae250f506cfc44ed5ab15466
- SHA256
  
  6d20a410cfa75c7fc4704ecd114c05e136daeca5a4229d5f1a184179b16c60e9
- SHA512
  
  26f7a3b44960b21ce794a79ec7f2a4f5a9becffa4262811ea2b222aa07e3a00e06569d11b64dc42826e882a14b830ede3c367931c3d7385d9c1c52cd52bf7985
- SSDEEP
  
  192:GjYwVENvJYCPCsOaNl4k9aGMC/0IQMvZBMDq2/gIsvEcIjC8yC89f8RC8WC8QC8Q:Gjlq9nBNRhBM7YIsvEPk9kfo2TR49AQT
Score

3^/10
behavioral19 behavioral20
- Target
  
  upload/API/HiAPI/Class_API.asp
- Size
  
  5KB
- MD5
  
  92d63c9081de6b463b6207be82eec2e7
- SHA1
  
  2fb4ebec425dd7c463577028a642eb2c6a87ffbc
- SHA256
  
  784ffad059f2f5d8f576fbf3ca7d2973674b03f4843cbbc7106cb1f93eb4983f
- SHA512
  
  0ee65fd0133d4d642d6aef918d20e42ae73d0704fb2622dbe0cf55adbf90412706618ea55e19034a96bd622dd5ff9bc61eb3675fbafa38ff99357157d10e9ebf
- SSDEEP
  
  96:W6fHPydXpW4juc3ePlOZvXYeHC5FBepwuudXV/elpjtp/4aea:/vyg8n7i5FBep30F/eTjb/4K
Score

1^/10
behavioral21 behavioral22
- Target
  
  upload/API/Transfer/Index.asp
- Size
  
  1KB
- MD5
  
  3e8b8910bd2d6a4c131d969918d5fd6a
- SHA1
  
  83a0536e6eeb15232fed6b078a92ab930944ab2f
- SHA256
  
  77f370dd9ff229baf1ceb1d9450ef79904ac84cd53ad27c72ca8b54744024050
- SHA512
  
  580c75aee24f62a797d5b0d60ac97ef2c77a114dddeff2db14ae736f8e630f997d2ecb3b8594618f4dfa1710685c7beda2e075a6dcaf2eafae253ebc9ef00298
Score

1^/10
behavioral23 behavioral24
- Target
  
  upload/About/AboutUs.Html
- Size
  
  7KB
- MD5
  
  aa7184bd4382c6a5cd79ff379e47c7ab
- SHA1
  
  b2e79f557816d5811b21e23e46c2b11f9221f048
- SHA256
  
  1000b0c8a159e3cf1c410a0f76c3f08639ed44cc6994fb52325cc62f1d958999
- SHA512
  
  8c843e89a930707066d1e073ddc9ac65c93f5109bbd0c1c9493e4cc6934787eafc71fc6da55ef23e326b9a73e0f41fcfa831827d2e237fb232677356cdf72531
- SSDEEP
  
  96:Szz2SItscvVRsTJA9ojP+6HvSTQWy+/nCJRZjPsPNJw1kxo4:Szz2SyvdW9v1U/CJRZjabfxx
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  upload/About/Ads.Html
- Size
  
  6KB
- MD5
  
  3ed46eaecb464630bcce53f5d85014da
- SHA1
  
  e4e63e2c498232e670d3b6a90d0229e914e291f3
- SHA256
  
  91227e0db94bf0ccd4f6b97b1b61dcbf66e62a37e317c7cf0742871075d36f4c
- SHA512
  
  931ea2d5a5f239c6ad79a4eb47cd87f98203a2d8652fcf65b35682b44c811aff810d5c9cd3740824965490ba4bf727c87fb111e3b4e7025fcf59277c9a6c121c
- SSDEEP
  
  96:Szz2SSHtscvVRsTJA9ojP+6HvSTQWVqPPsPNJw1kxo4:Szz2SOvdW9v1NPabfxx
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  upload/About/Contact.Html
- Size
  
  7KB
- MD5
  
  0ff5a333d5ed77ef067824a27ac0bf89
- SHA1
  
  2f9e575ab79f2ccf4872f297a4fa305f5a8f180d
- SHA256
  
  bb4ad93ae1289b159be3491d2941fc1f65a66e87a910e36c0ed10bcc1fedaa7a
- SHA512
  
  3f1330e7355cdb40e7c805c39c2a7086d45e17009ddfc3914c582c559d5c753ec10135faa5fbc887cd529d6677d380e8060cfa7afd88fa1abffd7142cb9321d4
- SSDEEP
  
  96:Szz2SKntscvVRsTJA9ojP+6HvSTQW0dm8vYdP8oPsPNJw1kxo4:Szz2SmvdW9v1nUabfxx
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  upload/About/Help.Html
- Size
  
  6KB
- MD5
  
  5f26dd860c7fd9185714da27fdd77aa9
- SHA1
  
  63ffb18aee54976193ef5faeaa9aca7131a65bfb
- SHA256
  
  353a394567117b979cf35d58cd70a6b6168193871fa1466c478cccb01c7bfa26
- SHA512
  
  7aaecfe16284375f8974cfa7584d6f9ba89d117e71173b6caacd99b2593375dd06c689402187b965f98e56601517c7b1daad6756338b5d5ed4a3e9cee9229186
- SSDEEP
  
  96:Szz2SDtscvVRsTJA9ojP+6HvSTQWWq9PsPNJw1kxo4:Szz2SJvdW9v1O9abfxx
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32