9f0340fca876c6d22a4e5d2ce83265321d8ddb6237119b871cc0e03796b542e8

Sharing

Copy URL

Twitter E-mail

General

Target

dd7b254f30e3f0cf9113f1c126c614d0_JaffaCakes118
Size

786KB
Sample

240913-cwwfrayfkq
MD5

dd7b254f30e3f0cf9113f1c126c614d0
SHA1

f93ac89578d03efc7ba2f0a7d173851b63611fd2
SHA256

9f0340fca876c6d22a4e5d2ce83265321d8ddb6237119b871cc0e03796b542e8
SHA512

148de51f5a6d469b7c807d2a1b76d121eb04c1bdfb0d85853e0db7656de1eeaf33df8a5afe78ab00a51b56b4371062a34c77184d49f20b8dd52fad980eba8559
SSDEEP

12288:9R7Vn/HgvHgBbaGm/LPiiQ9cVL27Owk9U0VpawJ3ZhLKYJz/jUgB2Z4:9RNgvHKaGm/L+M27Ob9Uwacy0pIZ4

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  YUTK1/Admin/Admin_Group.aspx
- Size
  
  4KB
- MD5
  
  cdef0cb5a16c48c9e1c6d1de06eb62d5
- SHA1
  
  a463de9ce467eb7e87beb148ec529ff8e3c2a65d
- SHA256
  
  d49a0e6a6c4a65c6d3aac9dfd356c969a9335dea3dc443266e006afe21fd9fb9
- SHA512
  
  3674f02d8a8245ba04c55c83554d4861cec284630d4d8771d4e99d8ed3556a9db1763207eea312f8319aa9f560e7aa17219f686a4a2c705c2cf03472dc49afa0
- SSDEEP
  
  96:xUVHCIqFRrJuTwuCxCpLHCBLqwpzfFhfp7q2+vEmuer5zfaKuTwuCxCU:xyCIqFRrJuTwuCxCxCB+wpzNKBuS5zyK
Score

3^/10
behavioral1 behavioral2
- Target
  
  YUTK1/Admin/Admin_GroupEdit.aspx
- Size
  
  2KB
- MD5
  
  b31136851ff6a094ba7e1849dc184c4b
- SHA1
  
  d5a7b90fda1852b2bb3a89c28611124b09a96f29
- SHA256
  
  1ffc7d8a0461599f6bdbed452afe80ef68438cbfbfe7ab3bd9b2dfa5cd6ef040
- SHA512
  
  d11a1183df6026d16e72d1805e947c4efc3796aae5e3d6ceb2d65e53e44752922d848be7f21a5afaf06f9df61ccc3cb866e11c3fa06a106e02b011cf9168cf00
Score

3^/10
behavioral3 behavioral4
- Target
  
  YUTK1/Admin/Admin_Link.aspx
- Size
  
  5KB
- MD5
  
  f5c1cf2888e5ea0b20e2692c41c60cb8
- SHA1
  
  7220764c55f8cf2442d68002633dfccdcd7e524e
- SHA256
  
  d89129f9d1e1ceb673b85b87b5836242ec5a8b3732be5a3e9a6a59890ffe91c7
- SHA512
  
  5b335af41a8669e497132892516dd125a07e76637f34049eaa6d06d0ab82c2e5b57b9a1145c6d0fdd9c4debff3d8f3e6876b15a858e0b4dfc35a4403626f0cd3
- SSDEEP
  
  96:UTTHCgfgFpm2C9FWix2FRrJuXZswuCxCEHHCgU9HjTF6zMDjKVzzdSIjpIKuTwuI:UXC6gFp9C9FWiEFRrJupswuCxCcCgU9g
Score

3^/10
behavioral5 behavioral6
- Target
  
  YUTK1/Admin/Admin_LinkEdit.aspx
- Size
  
  2KB
- MD5
  
  7d4e2f3ef60a9ba796dd76085df4dd5d
- SHA1
  
  c9dfa926d4c532b1e60dbd0e6381d83795dc9e5e
- SHA256
  
  07ea8ee0ea4944d6ea1d4a55cad85026f322500b3dd5ae90c4a6bcbb900adb2c
- SHA512
  
  787c42e955fef3a67a57e5ba29a1548030e5f421dad40ba5c1b6bb82031b1deb0de6ae75e193bf9d43001c4b2ebe74106e7f738259b6ed3346da79004ec38950
Score

3^/10
behavioral7 behavioral8
- Target
  
  YUTK1/Admin/Admin_Logs.aspx
- Size
  
  2KB
- MD5
  
  0fddcc0e4055acaa83dd95df8a598bf1
- SHA1
  
  050cb349d22e98a3a1b71e6cfd485c25c6f76b9e
- SHA256
  
  dda7edfbb44dfb63cf0ca31f546a99cbff2cea71ec457422e12905bbe1eef622
- SHA512
  
  f029ce989cddd7b6f41c629be5dc235b23f0b097ac319e453356b4585836c88cd0861d1833b846acf99ca4a4437e3af5af72f5610300e0dbcc6a9ca411018f69
Score

3^/10
behavioral10 behavioral9
- Target
  
  YUTK1/Admin/Admin_Maintain.aspx
- Size
  
  2KB
- MD5
  
  c7f87be3a6d2667baddcfbe5783e7c5e
- SHA1
  
  9eb52cdd30e23bc9a1b6832734349ac3296799c6
- SHA256
  
  10af34f1f0a4fc0a0ccd7f8bda64e2dc79e3869e6b5afe01762904bcdfa1722f
- SHA512
  
  6fc063213045a4f223ec2e7ea3dc8cb3fa233c3875291870f70690ca118b163a6746ef7bcdde4ad165c8c6ebbf8d44ddb29bb888f4b174775966a4851297b70e
Score

3^/10
behavioral11 behavioral12
- Target
  
  YUTK1/Admin/Admin_Message.aspx
- Size
  
  2KB
- MD5
  
  38165df4099b35074259e4095a1efbb5
- SHA1
  
  d35d748249cd1758de726c42884dd6b3f94771f7
- SHA256
  
  bf7049473960cb8d0eb682cc15477d676994c4a3b74ecd725add996e1b5feaf4
- SHA512
  
  3d4516b1fea2bef356e4c5cc38540f2e23ce16be5c690cae99175e52cb0f843708e1b2e3c0b1a781ff85767f9894f09f9bf98f9a5fe5d89fe3ac5dead76062cf
Score

3^/10
behavioral13 behavioral14
- Target
  
  YUTK1/Admin/Admin_UpFiles.aspx
- Size
  
  2KB
- MD5
  
  4f54a33b61723776b3e519d0292ed8b0
- SHA1
  
  a73e3f240b5d0e2edd6fae0577e8c1ff02253357
- SHA256
  
  b4388d428007f574c603ea039908dc10969678fc5df95c351d03313b97b5fb2b
- SHA512
  
  1c37ef7d4ca2331e113114982b913982b35a87b1b2de259abff791981183ecdd9e9a4a6bea0c41e2ac6454a9405f694523baa39abfdc05f48e8f52c35579860d
Score

3^/10
behavioral15 behavioral16
- Target
  
  YUTK1/Admin/Index.htm
- Size
  
  1KB
- MD5
  
  6e470c860d89e4741db77e6cd506cd7b
- SHA1
  
  afe7a6f7b634f7b4fed75df72587638a10554153
- SHA256
  
  4297db45a9550fd9530c1e870cb513138e2256e1ac345c83a7d7de0fb4c56edf
- SHA512
  
  05e7889366338f48aeb2a205cdba7c8d7174620fcbb7ee40ee9186976ee4f92dc8f9151cb7bb05870ad59d4d36dbad25f3a4b581238e47725f0e79bd4f1cb4ab
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  YUTK1/Admin/LeftFrame.htm
- Size
  
  8KB
- MD5
  
  e6467415acb3a3960c5d636167234c69
- SHA1
  
  db03309699f9d10e0a42dd12f06233c2ded7c754
- SHA256
  
  2e31fc59fb0fe16299117b0cfff72da18837dd2566d94f6cee97abe844ab60bf
- SHA512
  
  fd3f70e0498ff8030aaf4b5cd80c9350b4ba00a0b10756cf83f29201d85b33446d57d7ad49bc3f2a78c9bb9f41094d3ef40869bd6f05453fae05541288021b52
- SSDEEP
  
  192:wTZN+WCTE6cCi83CeilCoVC6g4JleoCxSCi:wX+WCTE6cCi83CeilCoVC6g4JleoCxSR
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  YUTK1/Admin/TopFrame.htm
- Size
  
  1KB
- MD5
  
  90753a08cebf4ab3c56a32ef9561a8f6
- SHA1
  
  f20ba2b4073cebcc58021280ba4565c2d8f80985
- SHA256
  
  7c94559663ad1bb41b18d3eedacd712a5f5d0c9d78fa845928f302bf453944ec
- SHA512
  
  ff627a754b9d5bd997b251be1310d43cbd9fa31cc997d74e37b367872be2b61b93a9f3b6aa87dcb3b15383fa15bc8d66837f0d31d1e0a8575cbc30a49b03c246
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  YUTK1/Controls/YU_News_Sel.ascx
- Size
  
  3KB
- MD5
  
  4af2f91dc6850f1d9db5d667a35864a5
- SHA1
  
  d27565d67c9b8e252f609a051a3df54c8485646f
- SHA256
  
  2b9f12f3300f0c97501d8579bd6d1433f92126f1fa7bb875a6289e2a58909c96
- SHA512
  
  ae47e223f8ac04286102ae6aae7a86d2243a2b64aa4d3cebb747e715539d6178ca7562f07bf82c52043dd9ddb3b5470fcb2edb1c3f5f21585dbcfecaa7400782
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  YUTK1/Controls/YU_Pic.ascx
- Size
  
  2KB
- MD5
  
  61f90fc2fa0b12d73ecd6dcffd041aff
- SHA1
  
  84c61b03ab61b1882a1306ff84b03b05da2978cc
- SHA256
  
  d5d73aced3d7671498ad0f84255e619310c2fdacd8e4ce60ee634ef73fc02860
- SHA512
  
  2d739d46db5a150dceae7668bb467db2801837561519e277f0bde53e57eacbaa70e1aa17d4cdc7562ede8db0ca3e584d8473d04bf0ac32472a99d30557a3aa8c
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  YUTK1/Editor/Editor.js
- Size
  
  5KB
- MD5
  
  750fcbf9290adeed1b3043e0902b70e7
- SHA1
  
  96e90bada5d4d806d1aa259e90f95b3b32fc03cf
- SHA256
  
  b484e9f4bc6cedc798ac5d7975cffeed83d2eedf9c5d4d4cbc17c507b750735c
- SHA512
  
  1fc7bfe9a8ac6eeaa69748c507ac1c8adaba916aa4dad0c55aeb9113e75aa12f7f7c1e93bbd076651d7cb83b8a17380f15c65979e21047257649583f925daac0
- SSDEEP
  
  96:8CZJScfQcAA1GcARVcATscAn04cAHjQijxxjMfIYCj39Cjty8vMc67NOwj3Moj30:tfQx3gNn8itxofusU5h6CuVRYu
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  YUTK1/Editor/include/rar.aspx
- Size
  
  2KB
- MD5
  
  2f07ef2f67d84c658976b1dda809c7a5
- SHA1
  
  87bc58beec3050a07c4b6518a3a8180c27eb3836
- SHA256
  
  eeaac677d78e307575dc8fae89424d70f52f03bbd0b66e9c7b0f9f245dfda57d
- SHA512
  
  f9df708db5cb1ad554a66455a6e344e81c416d5e8803588eb334557c8fb5e42c773339a58bd21b536c69b91f0c50b5bb76ec55e6eb9d1e152122587269cc0e9d
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  YUTK1/Editor/include/rm.htm
- Size
  
  1KB
- MD5
  
  952a303e685294d5f2c8f6d84ffa45f1
- SHA1
  
  b4f0b33412693ef09ae245558d5d15f75a16acfb
- SHA256
  
  9d2df087a8baa35025fe06615c52af9d6479f83c9a69d566175eed421545dbea
- SHA512
  
  6d08b65cad23ef602605a86d17347ff3906bbd88f819021abebee3c6c4a1ce5cc523413c02fb6a7b6d9fdff0f6e20c2a20c070d8c0b916ed30271903e35eb581
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32