3491e7d806ed856e5aebd65e2a2e8afc001721f91490c5ee70c92871f4c8f75c

Sharing

Copy URL

Twitter E-mail

General

Target

d52da311cefd699dab1d820950e65213_JaffaCakes118
Size

2.4MB
Sample

240908-14rpjaxgkm
MD5

d52da311cefd699dab1d820950e65213
SHA1

1aa5992cc1c25f62882c8a2300c558dda8dd0fe1
SHA256

3491e7d806ed856e5aebd65e2a2e8afc001721f91490c5ee70c92871f4c8f75c
SHA512

42d07229e4ee3e5f53ec4c66d1d101a84171784259d56542ef7c4e3559eaa89b688bb015e24a846b8211e2929c0543333a09a69d2000f0b02dc266f7340521fc
SSDEEP

49152:oT7j70cjGeZD/2Pj0ada+4KH3YZSbj/246+c0baNYmBDMokLRz6tPAu:sjgqZD/24adaAYZSbbrvDaNdBDMoC6Cu

Score

3^/10

execution

Malware Config

Targets

- Target
  
  wpxt/checktime.asp
- Size
  
  129B
- MD5
  
  c6af471f3d6492ae4abc3beb5ff5c71b
- SHA1
  
  f96c8deee5d1c5940db31639481d743ec5aad9be
- SHA256
  
  ac8e293a61da1402a066cb4dabef2116633c6c931df841a4d79fe0a81cf93f43
- SHA512
  
  0a010d2db1ee0cab0bb6a366c5bbbd1c58f23b686f46ac0d7c36de8197492772c9d0e1f262bc2be7bc7bc193b0a9e5b2ebd522fbe57db520757820bce40347e3
Score

1^/10
behavioral1 behavioral2
- Target
  
  wpxt/conn.asp
- Size
  
  462B
- MD5
  
  582b93f3d3f31214056dccbf08d9ff04
- SHA1
  
  3f3418d2fd56c710da86f5619d121baf9ddcd8bb
- SHA256
  
  ca24bfdbf28266a826924db8b5dd544f54f2568a8c452fe38255fd352daeab42
- SHA512
  
  f743df25986292cbb8dd97c446699e1aa520f60157c1c1484b171cd403ac9b7258d92fc2fe02f58cf10ae55e474d51755b80fc994bdc0c32262a5f81fa645a39
Score

1^/10
behavioral3 behavioral4
- Target
  
  wpxt/content.asp
- Size
  
  10KB
- MD5
  
  c80f13fc469fcba81998f6a925bb75b8
- SHA1
  
  3be26a6dd987f1046c91016f2e77d745cacb3cbf
- SHA256
  
  57a08987fae758344fe59440afbf6d5ba865492fcffd345481ad99fbe6249e2f
- SHA512
  
  fae8e109d8baaa1812aec07ca8a04b636f7c41b58a72b07e2833e584cb0777e5b979b9fa3352a079397d6c016920c956d7b24a0f1c5adab7a44141091df8b28a
- SSDEEP
  
  192:xmIsG1gE6qcUDTkxykPkdkbtaFYT+TCGtWIJ//Jp2BZ1CT:xmI75sIJ/xgsT
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  wpxt/dd.asp
- Size
  
  409B
- MD5
  
  1b01d35e30f9dfe66eb851bd3e03cc67
- SHA1
  
  3333094857969a2aa9ed4cc25d504b8062dc3e27
- SHA256
  
  86d76b0dfe6d6b8f3b7c4b0e011c2292de322731e17a9b62d384e1d1b8383654
- SHA512
  
  d4888ae9e0eb2d7f97a213f36fc13bd2fc27286aa8c28928ad75f20170d3d6c8949a84ab1b84d380d4eba906802eafa7fdf87c571dd7abaad431def2407f4a8b
Score

3^/10
behavioral7 behavioral8
- Target
  
  wpxt/fun.asp
- Size
  
  23KB
- MD5
  
  dbf24f9a26e2590178e02cf0df20f5f0
- SHA1
  
  f02d6e14f4beda9e89ad587847185d42d422050c
- SHA256
  
  dafe0690959a866528f2e04ca6bf0923fedd801870839eb2c3b352916565ef34
- SHA512
  
  747e3afe7d4a71a365bd44dce51d8c22df4b6ea6d01b794dd61085b6b0b6fed41f180e7d6af84eb1761fa87beee4ce5df8184bc5b5034a47721fbb097454bde2
- SSDEEP
  
  384:/3e3da0rMAA7H9MwUjNo9N4TNiNobfoM3ch:/3e3Qodo9N4BuojP3ch
Score

1^/10
behavioral10 behavioral9
- Target
  
  wpxt/fun.js
- Size
  
  3KB
- MD5
  
  2b0f98cfb6473c7d1746ebd4d7f2477c
- SHA1
  
  90a7a4bf314841ad8cbc2a7d0d6ce63a2db66953
- SHA256
  
  a0eb85e3fccda823e1d80aed0e314d81e158e6610a1952f7d1becde292809975
- SHA512
  
  f92e8f7bbe0afd8462ccf973255f4e30a5a87e6c628d01deebba74d6614a41128946345f66e22e2d1dfe65713d1ed24f4dd726fb6ff963b50a062740efbd2c8f
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  wpxt/inc/Config.asp
- Size
  
  2KB
- MD5
  
  9b4a806543cbdaf2c59c7106ceb8c8c7
- SHA1
  
  2399a55005c7687e82b5ba09b951ab66d93c73d6
- SHA256
  
  9008b251db7dc7d84a50b001d951f6aa8acf91805d01bbff43e8f40e738290f3
- SHA512
  
  1e40c6cfd3917c35c46db950c579de8b84f162f81bcd84f2b7b8b01df17fc2005bfba24b1b9dd875d20bdc2255f46cd34657c718b819ad2d7a36736e9ebb7052
Score

3^/10
behavioral13 behavioral14
- Target
  
  wpxt/inc/upfile_class.asp
- Size
  
  5KB
- MD5
  
  12fcfd9b932c1db1dedf179a66ee1e79
- SHA1
  
  e38c22f8a97f6da93ef5f660cdacce1670ef2b98
- SHA256
  
  5db0f242eb2cbe5c81a0e208d2f864b4456b6f6743c5c7807bbea22678206da0
- SHA512
  
  d8b63987e2d1f0de9fa7a59d8af28f24dca3db8d7004072aed6c4729cdaf37e1d17eab495e54fd0635095ced432f225d908d7a5d697b6b0c8acfbea7af02791d
- SSDEEP
  
  96:dW04YtzdlWHrHmGQ4/CHFXeSlvSa5y3yayj00yR5yRyJi/KeTFXVnvWih:dWazeH7CZRnCIxT9Fuih
Score

1^/10
behavioral15 behavioral16
- Target
  
  wpxt/index.asp
- Size
  
  11KB
- MD5
  
  96f5650070100e22d5523600392946b7
- SHA1
  
  a37f298129fd04865ac00e1a53117a73b4fba5a4
- SHA256
  
  23baf34210e786854815f942ab3d32caa524d6e81637b09975f1d0bd82135f8e
- SHA512
  
  32459252f1e41d56deaccf294001c28f17e9067d072d2c678d3c753ea8052c3e71ee82590fdc9dce80d7a16842be259912ce05b42575a456bce449c2189d1664
- SSDEEP
  
  192:fImsi0cO+aaF829fZjpfTEbte4tEnGJAXyaDHT+TCGtWIJ//Jp2BZ1CT:fIoPKEisIJ/xgsT
Score

1^/10
behavioral17 behavioral18
- Target
  
  wpxt/md5.asp
- Size
  
  11KB
- MD5
  
  61bdc7e934a4764086bcdddc5c27a76c
- SHA1
  
  a0f4bdb020f22fee056435ec40a71d4d89bc4077
- SHA256
  
  c3a9dfa21953bb92afae286b02181a66074a16eed1a7a572a14b28cbb051cd70
- SHA512
  
  f4ea12ebfa8a1d11028383584f0a0f701ec06753b7b7f583282b9f6718806a7e53c1468f0e4c5470f946de0bda32f34fec2349acab0bfb5f3d1d255234c82c72
- SSDEEP
  
  192:AIwB5J0no6iOQvhPUnSJZQ3mY8/BoyLp2SzFm+iK4tIIMehAsJT:Ap4o6iOyzJZImY8/Bjl2Szfi7M94T
Score

3^/10
behavioral19 behavioral20
- Target
  
  wpxt/view.asp
- Size
  
  3KB
- MD5
  
  78fbc30b047254ff640facd8da127045
- SHA1
  
  dbb8caf1946344e7553c1eadd370a40a1c3f5685
- SHA256
  
  35a20b206345bf1a82efbea63c5aaaa36968fc469216bb320d15b9a8cd78d405
- SHA512
  
  beaa1ab793224473d8e08f7c45eed646803a450379244d83bc3089fc61d0f49e1b0df421abda903edcd016d0c95f327b6c384bbdaa981e784155d507e23e60e9
Score

1^/10
behavioral21 behavioral22
- Target
  
  wpxt/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24