ba3a02ff65e4810845fa086c94372e46ec4bbafc42b8d8c5fccc6e98e7d63915 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af422d313f4ee4b11e64c2ddb7de1829_JaffaCakes118
Size

198KB
Sample

240820-pwkqgawdjk
MD5

af422d313f4ee4b11e64c2ddb7de1829
SHA1

71e572a1b2b9c6a1054ed8c75ee15dfc6ef00dcb
SHA256

ba3a02ff65e4810845fa086c94372e46ec4bbafc42b8d8c5fccc6e98e7d63915
SHA512

3435ac6e343919ff0894d53dfeb8a7f7310c813ee681d7e7b6578e50539dddacc68f633677d6c7e73c3d07dedeaa534928fa94ba038be0dfd93ea180ba38dae9
SSDEEP

6144:3pc0lITvITQwwIxyF6RN5RJl3qhQeWl4eb58:5c0lIETQwwIxUMLRr6U6em

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  chrome/content/ietabDrag.js
- Size
  
  7KB
- MD5
  
  f69e09b294c50d80bded85cb88bb653f
- SHA1
  
  6dd4005e1c7320e043ae159f42348f7eac720c1c
- SHA256
  
  542dae917e0fb16bce0eae6cf83696b46647b41fb2008438a4259a327bb87233
- SHA512
  
  c5f45b9b44c9eeefc1053543050ba6815c5d04ba09bc52a45525bcfdc6347cb9820d2401c44317851d6983f6cca1af08e5dc68d90aa5ed7123d69764db562e16
- SSDEEP
  
  96:WTM3Cgcw48WM8bfSjFobNO+BA5ihr9n/GOsL2eES6jM:wM3CgE8WM8bfmwO+BA5iPn/EL21Sp
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  chrome/content/ietabExtApp.js
- Size
  
  2KB
- MD5
  
  9f4b92e8606709cb5da744ccf87b030c
- SHA1
  
  605c3b49a11722fae5d3e74431f3c626463384dc
- SHA256
  
  e7bec1e73803d2a3f146313c80f7fe04d8d8d2c93f2b44ee0ef95b7478005636
- SHA512
  
  016c66dd5cec8b123433ddde26152c300f57f276ef445f2043a108447eed0b18a154d1db588f529e82a1e9373756390b8c6dd1b918fad94566a0b2968f65899d
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  chrome/content/ietabOverlay.js
- Size
  
  28KB
- MD5
  
  149d3a6aa53dd4e1739dee5c99a7d2e4
- SHA1
  
  ae350e8725e50a5ff86f14959c4738529929ff04
- SHA256
  
  b807a484a4253ba7e832026f8476917fcfbd33fd411ef890001463d15934ed92
- SHA512
  
  c5e6750ee85d6ecb4766c11c09af6a266c931240641eccac531360c930805ca64934055145a5032b6717850b723200f09d53f09e5ec0c530bf1665851c9c42f2
- SSDEEP
  
  384:Ou2+z1BpeO1/esPCJHpwmOOYv+0jrpcnWZx1T1F2/D1hzmDFk:Ou7eMWVO/pSn
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  chrome/content/ietabSetting.js
- Size
  
  17KB
- MD5
  
  6fdfe03e260503a7d27b62e86cd20e38
- SHA1
  
  4ae816c1c3d863b4636578ae3d89de0b7b9ad388
- SHA256
  
  eae9674b5545841d2eccbb59904e477f266c8fee90672a83f2f1f2c072fc462a
- SHA512
  
  78603bc02f44f436f17997ad24795fc046e397924b9d515946cdd947cc53851628fb15aab6292aa4fe80f625d568d52c0a546aa2e24743112ed62aaf9a872f02
- SSDEEP
  
  192:dPBZnORl+AyMBQ3X/6hg/vP5rbIUL/SmSGaWaL4sZ/ocWaCfFtRgxN:d71AdQ3X/6dUYFzAda
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  chrome/content/ietabUtils.js
- Size
  
  8KB
- MD5
  
  65e928c8ddcffdc3eb084fbf48000ae5
- SHA1
  
  787bd9a450e6388270689016704865bd60b59ffd
- SHA256
  
  31174779d7122924860b89033b44bb64ed22189e97d59efa485e6aa1d929db0a
- SHA512
  
  df3114a921311ac2dcb549e13f6ba3fa5dc988ab03a237d563dc2354d005e2a98542fdffa1a83cb04cfb98a3c9aa9239e1353d23b4fd58f1223cb94cba320d2e
- SSDEEP
  
  192:u2nWlTiQKmhg4E9hlFmTmXYnMuhw4T1OkFVTI:XYh1PKonh6KOKI
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  chrome/content/reloaded.html
- Size
  
  597B
- MD5
  
  51f1c29c93fba24782097760a06b01c7
- SHA1
  
  0e75137e0131951c6fda7e2352486ac3474cd671
- SHA256
  
  a5a611325c91f160e5d48147531943324fbce782cc13b9b999aa274f35ba1aa7
- SHA512
  
  b06af6f9f4e73c1f56b082d96ca0fa2748df63bb822b68f35150e5da083fa87568859ea27dec111c7703c15a8c742fcd71cd4cdfa94eaa3f58840f5ee3ea0c4a
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  components/nsIeTabWatchFactory.js
- Size
  
  7KB
- MD5
  
  5039d50b95d5c51bc10d3436528b510d
- SHA1
  
  e88932514a3b1eac14931a799cd1bbb26d2d5e5a
- SHA256
  
  5f199053f42a2f705fbb3341bd4315bd26e7db6fc8f7cb8e3b4eb1b02aeb3f36
- SHA512
  
  10bda9a6954220f87dee2efeca9c24d07a8ad2edffc13d6d246d3d090a078dc74d76301e2afc26caf6202e03314d7f14af572f21cfb357a06f9c09fbbff15ffa
- SSDEEP
  
  192:Ouc7TJpcbs+wfLFMz2WcGOu8U9pmDiQkHYXCi0bhKBN2:Oug6hv2Wcfac2
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  defaults/preferences/ietab.js
- Size
  
  869B
- MD5
  
  99aed36e1605bb787fb990b84c92ce3a
- SHA1
  
  a8a87ee25fb0daac25cb44dc18d14d03896c3564
- SHA256
  
  61c0d3058006692399d75fddae92c21e9597a194e85be58e0c7e2a7869d98196
- SHA512
  
  b73c6f4214b07779886cc1da1d61d1107d9d62bb859e1aa2dc16d653ab80c2df7540a669559f0486fb6de9326dfb22e0625afab103bad9861969024f0043e065
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  plugins/npietab.dll
- Size
  
  118KB
- MD5
  
  263a8a44418c7de3d13f74c19a7c4c9c
- SHA1
  
  dfb35484162019bddffc6df3ce946f5a4d23ec26
- SHA256
  
  83e07df6f6a6ffc1a5762476af0ab3f73ade572707e957d6516610a64e5cf46e
- SHA512
  
  d808f91441f2a3465964212664637fa1f1156385d7d3dc31b9ac53bf3a7fe4e79867709c1c2401989b4da67108714b1e51e8adbbc7eca718d64e80d8d1966127
- SSDEEP
  
  1536:jIqiv7fFQ970KdkwiqA9nNmPrTYRIo/afaKLqq8jm330qyVAg5K/UE3nkhO42Rn5:tqKdkwiqA9NhIiiHbYK/tYO6j0/3
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20