5dcabb83c4227ec9ef30ec0eddc8ae452b02d55b976ca1e48d052dec5b5a7ba7 | Triage

Sharing

General

Target

d170f1c8a1c486226260004b96d539af_JaffaCakes118
Size

16.4MB
Sample

240907-jtbrwstdjf
MD5

d170f1c8a1c486226260004b96d539af
SHA1

0e091b5942f5f069103855f175a213e3379a08bb
SHA256

5dcabb83c4227ec9ef30ec0eddc8ae452b02d55b976ca1e48d052dec5b5a7ba7
SHA512

10111cc31723268b1604e4cffedb79da1646c703317cc5dafff788f333dd9a7951ad120cbbb4826b145ec9eadb2e719aa5fcfd129a5cecb302841e568e0f99fb
SSDEEP

393216:dDRU4tjOrXRKhPiNFhAZnv2parsSpCV6S4PSlooywoI:dDy4tYKBIA9YqsSppSKEywH

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  企业网站系统.net v1.0/FCKeditor/_documentation.html
- Size
  
  1KB
- MD5
  
  20a64a949ff5ad2d9c97b5ba47089fa6
- SHA1
  
  02e95a0c1dc0399805b11722520fa86645790868
- SHA256
  
  9e4ef4b54659afd15d78fdb2f4afa6cc35464231be3f512cc7225826327efdf0
- SHA512
  
  4226dd248e7bb0fde08874dbf2d5e7322a4d132df3ce381e117015668a24d26f7142666085e191587e7713560a159f25e7fab318aa762d9049ded026147dc9d5
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/fckplugin.js
- Size
  
  1KB
- MD5
  
  2d9e5f04fd80fa3659191c432c663ea1
- SHA1
  
  dbe78e28869a362a41f49544104f9e8879a8c13b
- SHA256
  
  dffe7de1ce897671a3eaf635192dbad1bbcaca57cf27415358b4c10fac8e7e62
- SHA512
  
  19120e57762c169c29f5b481b08a632b74b4fde0d9e5b5fee903bc12596377aed389c3c10aec206bf7d9942d545a4817facd519feb2fffdf35694ff9a10d9f0b
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/find.html
- Size
  
  4KB
- MD5
  
  c22e29afde7c911c6c36755abb3ea723
- SHA1
  
  ef8ea5e82ee0775114be6fa8381ed6d9c854a131
- SHA256
  
  eb96989525e0be53a8b5ca05b96121748207b9cfb952240f48e4ae1530763732
- SHA512
  
  c96d2d7064d14d3db4673023251d53df4309bf85cc84e89afa0840bf0a68fb7a17cfd9692f948bab15c48e3d4b87230be41e0f8c183ddfa59119dd6fdd1bee36
- SSDEEP
  
  96:jVVyO25XvlAVp1cyy2bmYHtQjomJaJiH2gcUQQKgcj8:OlAVpTzrQRaJfgcUQDgcj8
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/lang/en.js
- Size
  
  1003B
- MD5
  
  362454d29ed84cf5c4452457941b630d
- SHA1
  
  b441a83d719f2ee011810027aa29b10e0df7d781
- SHA256
  
  e1e391eac08c270ab2e6d20367b28768f7d4f169da237a135aebb5ba3a5b5d23
- SHA512
  
  fbd5e172686107f7a02bc686a1c9c31da10469ba3c98afc7558401d117fa599729658ed05561768b70c1a82deeddc3b41f72a6856101d32bc3bf24990e53c9c8
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/lang/fr.js
- Size
  
  1013B
- MD5
  
  26fb19b3641820d6e092f759710638d2
- SHA1
  
  6440a11c2358d479f9eae23a51091c3ea3904d97
- SHA256
  
  3697ebddc5615e13e8525aa6ef2a98e764560aba3ee4db82e8590f5db3620640
- SHA512
  
  61555f09c9d982895c47f23d82b65bf1b0b8d35dd633c1be79aeb3f6ed42d0a677f7fa678622b4a29c112c364d94c68c2f9c6ab582960d0404aef9d4414f3f1e
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/lang/it.js
- Size
  
  1024B
- MD5
  
  f7942888366e874506ca964b2f990b13
- SHA1
  
  6050f697643052feaae2279e6378573ec397dc00
- SHA256
  
  c2d3eb47a2624639c94e3bc42b5f66330774eb0113c1b4b88e1f7608c7e683e8
- SHA512
  
  19ed8473ebfc0bf75afca5f7499181c6e8d383553ccf8b42ced28a7f0b48dcfa43fe0f235c933627aded7ebb77b42bec84159563b38ce5e700acbc81750b9dcb
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/findreplace/replace.html
- Size
  
  3KB
- MD5
  
  16c480dba682a48bc942d51f0fad108b
- SHA1
  
  829abe1dec722dbbe2d7421c5538e08c76aff25c
- SHA256
  
  d18737d72ca81e7daa051f7f58658a1a9a576f643f308bb3fb695117450cc719
- SHA512
  
  c596cc9199ed17099f615f9deb380276eb041ac88c827969844888c60df7f19431b1d2bc702c6d03a1d4a7779ea095dc3507436fdc0389c2ff3f23bc84e9d5bd
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/_plugins/samples/fckplugin.js
- Size
  
  2KB
- MD5
  
  25bed8980ad1a7975109dee117bb2c66
- SHA1
  
  bed364aa66a3cc751df264f60ae40c337d313a59
- SHA256
  
  3031e67b880c0799d4563fd433606ea83dd85376a8cf48767ed61b2d7fc07637
- SHA512
  
  6ad79486f2ab1a26a10637917a7094d1cc0661082624f40bfd30b1dc138016c91847ac005ca8a202357233e4257bc5794e54d5e995e5b4bc46a9275757d8cfc9
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/afp/sample01.afp
- Size
  
  1KB
- MD5
  
  cc15263a55f48070888dd72eb755feae
- SHA1
  
  0bfb98c9750cd550c63db87ab868e55cc95802e9
- SHA256
  
  1b83e123bd4c19b67d66e96e4b4b51d61001a4e347dfa40b0385a2ecb64550a9
- SHA512
  
  d1acbf508e1d3b44b6fb1c8f6f6659b64fe3f215400453bb0850536bd233363ff2cd214ea78fc3965fb8f0b36f5c47b47de59eb1bf043f02536c9542eba2d1cf
Score

1^/10
behavioral17 behavioral18
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/asp/sample01.asp
- Size
  
  2KB
- MD5
  
  7f824e83744bbd748746df623dbbcdff
- SHA1
  
  83d0132f1bc6aaedfffeeecf3d5647f8ab6feca7
- SHA256
  
  1712973dc409b3751452e8e7701f826b52f4b8a20bf1564950d2d885e12da757
- SHA512
  
  8ba31918895ae60339fe47dabfa4fd647b6959f3b5291461e577f8e4500c1a61543a8ebebb3d474c1ae9b838ce54a99bd03ae8668884a55e8bd0c0a015793a0d
Score

3^/10
behavioral19 behavioral20
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/asp/sample02.asp
- Size
  
  3KB
- MD5
  
  d3dfde4e8408bd71da300018f1545381
- SHA1
  
  d98e1b3a517b325a79d99d9635744b834e15f216
- SHA256
  
  48557f5cd5a327232e45b49d4efba5bc798d339d69074ef727f64d8ebc3525a9
- SHA512
  
  aae0b0855ebb4dbf68168440aebe22532f824137aa6b75f690d7cbc54c07212e6bb4b11c7931591cc3fbb5e5b15c1a99b5d4ad0762cba9352d91d2b4d39597f1
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/asp/sample03.asp
- Size
  
  2KB
- MD5
  
  9db7c1d3c08742044384681e00371a88
- SHA1
  
  d89c8ae41591ec43f4b397cb18aa0c545ab7c9f8
- SHA256
  
  0acfc2c8c95b241e50a96af5c2b15f45e132e3a23abfac6e64a0d4d94e25217f
- SHA512
  
  24c3fb663cb088a1804e63795a4861e7c0aa7ec72de74bae9eebad0025355390a96b2cc0c118e0c6b9f4a04adf3cee5a0e93ad6ea588158efad722917d858ccb
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/asp/sample04.asp
- Size
  
  2KB
- MD5
  
  699ab9445a001b06f461dbdb4d061cbf
- SHA1
  
  b663ee4b380e68cad47d19508b1e46109834dd90
- SHA256
  
  5b556e66e56c93007eb79a65027d8e8bb2c168dcf4d9886a3a64d4953debc64c
- SHA512
  
  fe6faf4d576d1d2ffc95293d742034259ee51c5feedb03d9eefcb2db64c44d919d2b51a171169d7d40179562fab26e0c448220a11018e0d6f9cc97f39c57eb73
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/asp/sampleposteddata.asp
- Size
  
  1KB
- MD5
  
  f77831105b53f044347e53a8ed1fa572
- SHA1
  
  44db9fcf3ee425db42812e2ed8fc92f97bc3fc95
- SHA256
  
  2fa83af73ae2cb16beee216adde2ca409e94b946add017d4923549e78c6efc60
- SHA512
  
  cdf99d81e3689216162b8881a071956e6b8226aca379fea2fbfa18291ff3522e78b1f8381774a33b513e6a698b0f721b00fd9843cee92098438b9d2ad47a5e8d
Score

3^/10
behavioral27 behavioral28
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/cfm/sample02_mx.cfm
- Size
  
  3KB
- MD5
  
  0336794e8bf761b147c62301392b118f
- SHA1
  
  f2e90c4a27f3d540f48e41edb9ac41dcc64de993
- SHA256
  
  c2172dd954bf0560dae95b3fc203a28bd742cc6944462fabf022eb7bc06ebd80
- SHA512
  
  01c6ad515edd699830e9d4c4eeca4d192899328164c50875b28553a90d7ef41b84a6cc52161fe551768d4c385f4b1fbce5dd9bddc51966498f1a9b8b9b160def
Score

1^/10
behavioral29 behavioral30
- Target
  
  企业网站系统.net v1.0/FCKeditor/_samples/default.html
- Size
  
  945B
- MD5
  
  f0a672694aa731aaae89613bf08c484a
- SHA1
  
  f97d3d1d30baec1f4c4580d1b6246192b9cadd7d
- SHA256
  
  a0f663463a56ef8ac3dfd2075357c603222cf97c2b75d646d3012d45c6e3d46c
- SHA512
  
  d1c5e2a6116083da1b47a79de72a6a50523ae432c649c6a8f565f0276c212112d463644bbf206e26ca6cfc07b503bc99caf8a435eaff28bd3fca64f46bc92763
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32