5e8075d07d4e76ad01bf0a9bfc5a47fed97265d89f1a909fe5e507e7c3a68a01 | Triage

Sharing

General

Target

e1a15d4bbe0973c245364e2ad4c032d6_JaffaCakes118
Size

4.9MB
Sample

240915-d6fcystgll
MD5

e1a15d4bbe0973c245364e2ad4c032d6
SHA1

396b19a723d3409b4600759f442ac1f9663eaeea
SHA256

5e8075d07d4e76ad01bf0a9bfc5a47fed97265d89f1a909fe5e507e7c3a68a01
SHA512

e30ab241283ce18dbfbe5ce0b612fdcc7f1934c1cc6b2b7e0d500fa88fa09a50bbdd94b347a4e682cc359227e8f69843f6436e108edeaddaf448b255d69ef567
SSDEEP

98304:9/LwNdLhusODencb8tLwRdXhuIwtvLwnd/huWi:9wNdLZjcSwRdXBwtjwnd//i

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  upload/admin/admincp_activity.php
- Size
  
  8KB
- MD5
  
  1e51600ea965b98b225cc64ad9338730
- SHA1
  
  3b8984aecb809b9b36ad008522aaff1c7328d6f1
- SHA256
  
  5ff2346a44bca07279d744d9140a232e145317be67c7578279e29ec7b002d952
- SHA512
  
  b9abeeec0bdaaf624ed0c8127c1e0bc6759d1ced604f969834cb82d8827f634f9aba99725913e85bd1cfe2109851c57976df87917cbf06f05918de4618a2fd15
- SSDEEP
  
  192:A4WKwj7EaRNGDR/KvT+iHMxFBQkkG77fjI/4w3b3G8b84TxkGPBjTZF0njCj3fli:A4yjVNG9KvaxFBQk777O4wrfb8wTpjVg
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  upload/admin/admincp_activitylist.php
- Size
  
  5KB
- MD5
  
  325fcf4cac244e93fe88c9f2476e8d69
- SHA1
  
  00d2a3d33012b06a4d4632f724094942dbe6763b
- SHA256
  
  e7dabfd147f9a8fcea7a94f5ac2304b634b5cec08afe937be715d53b6df60ae9
- SHA512
  
  4e772977dc9770d961ac2b5da822ee01173bf24151577b21be4a3f23bbc0af780b24d70a9adaf9de6c6791422c11a72dedbb363e3165119b64230d89e53cab62
- SSDEEP
  
  96:64Dqzmd9qRv7PX/0qgYbgF5XLMssYSum+WO4piomvGZiUs41iT4XbV6pRxZ1r17O:64WKwjnFgYUjoQg+WO4pi9+ZiUs41iTg
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  upload/admin/admincp_cache.php
- Size
  
  4KB
- MD5
  
  f1ca5a7c4fcb4bf7fe4c2f61a1e43efc
- SHA1
  
  27cb3acf818d97cc0107d6e2c63f3f18a83c2a84
- SHA256
  
  098c1b14421b5e1aa92c95e24fcb02e140bcd0f61be5c0d43a34e868552f9089
- SHA512
  
  4f4c1535f134eaa15c2d58015cb25405c89cee122ee8366fa019c5718eccd85b735f2c4fac9cab9712895a5a0d8cccd269969722eb4847a450d9cd9b6a9a1025
- SSDEEP
  
  96:E4Dqzmd9qRv7PXjqOVpQC7VpQCDXGMCM1B0d9T:E4WKwjLZQCTQCD2jM1Bid
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  upload/admin/admincp_category.php
- Size
  
  4KB
- MD5
  
  470d28d8d53f7557d28d0cb130ac340b
- SHA1
  
  b2ccd6fcca80b2b04a3fe7575f67078aeb47c92b
- SHA256
  
  bfcf8e8082b2c42970c03a6f0dcd9cd93c0145225b8b34293994647a5cd627b1
- SHA512
  
  432086a895dbc8da0e62bbbca653c6a754a04498c3bf25471de2b9245f4d1f2157715b414769292d7a12f1dcf7233529242e883e46ae8b95259666728d9ac5be
- SSDEEP
  
  96:J4Dqzmd9qRv7PkdMoOXODXsVXwQR7mEhob+VKGxfCs/msydXBfqFvlTi:J4WKwjXODXK9qbSKifCKmBrAJi
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  upload/admin/admincp_changepwd.php
- Size
  
  2KB
- MD5
  
  871665b0a6adb343eb98b98e70f06963
- SHA1
  
  8d8b1c5988510fa6d720ff7d2840880fd6f739b1
- SHA256
  
  c962993d25cd7b9acbfe66cf939d83e778ad156993a20c4f2ea265f01147ffe1
- SHA512
  
  14f3850254f9890aee7ccc38d52340a43cf850c9f183e5d8c3dfcf72ed44c7f898bcd23ae47b8a893825729ee5e54d4803399b01a2e942eb14dab872e0fe30e1
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  upload/admin/admincp_config.php
- Size
  
  3KB
- MD5
  
  cb58508df76dc3099ae64d8bf9c18890
- SHA1
  
  abcfb446e21d0aa831a87e7acaf872b6a1d82815
- SHA256
  
  5712965249d767174b9d29fc68cfbbbc25cb0b336b72aac0c893f02b85faf3f5
- SHA512
  
  616cf3286de7e286b2264d6c06148062e2126c6793b6f191b22d2d59822085061038862d2866131095c1b2a89e1dc09cc28e4e723129af3200d19a301bdd4239
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  upload/admin/admincp_index.php
- Size
  
  1KB
- MD5
  
  30d3d370c197d7b8e3ada2b797183789
- SHA1
  
  7e9f286548da5bee9c1dc053a9ce2f39424f78d6
- SHA256
  
  0358407d70beb393e5073b0ce2d440a6de60c66e6aafd698d9d1db8ca1fcb8ca
- SHA512
  
  6774cb8b51929abeeeca781b8a9b0cfc70c744eeaf526b1d5f384b7d39c77fcf586d76ecb5cc97ff32fe33c931ff8cbe8edc1c7d3f496f540cdbcca648d45948
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  upload/admin/admincp_news.php
- Size
  
  5KB
- MD5
  
  383bcc6f00315e562d9a52eeb9319b68
- SHA1
  
  63914f7f75d6d4236c0c057d396ff2747ebd0bd4
- SHA256
  
  dff6c9db1a4f4d726bc82a800f0d47282d95ee6f18ffe72548c3a87bac8a199f
- SHA512
  
  522db1030423683a5a07a21dd26928c7d209b25f093b464505d2d2c2cef5db36afbc49a27000b5cdbb39d9e27dcf47f3ff1fa1afc73a1a2f12662f3c81be1260
- SSDEEP
  
  96:v4Dqzmd9qRv7PkdMADpHuLZeJ1orYM8EDd8DrJhfulrnvlcIY:v4WKwjwpOLAJ1orYM8E58OldcIY
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  upload/admin/admincp_newslist.php
- Size
  
  5KB
- MD5
  
  23464b5bd2971ebfcd08779f8024c364
- SHA1
  
  ac5009bed5396a7f561d9c2163e362804c9b8e05
- SHA256
  
  e8e80e75c4053831130e9858cf9080c5efb81a89ed287b23f056620d4e38d138
- SHA512
  
  ee30de9af73a610a051d3dddc721feec54da31db05db1cc4f06034e66b3f31c28ad37d211aa0ae2932c320173ed7b7333c40ed820fd3001f1d4a372dd7ab9111
- SSDEEP
  
  96:14Dqzmd9qRv7PD0qgYbo6XN8Ms64eO9Ms64e/BYShXicWiUs4AWv2J7Cpt6pRxZg:14WKwj7FgYEEFt4eO2t4eWLcWiUs4NuK
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  upload/admin/admincp_slide.php
- Size
  
  5KB
- MD5
  
  715422c1b4fc0816be2b422a655b2c89
- SHA1
  
  c8a597a681e3d33fa443a7ce643a18fd1c906f90
- SHA256
  
  3bd425bb1119fd30121635914de33069ca268af3f6124ea0473ffbd98f852741
- SHA512
  
  42c8354de0d8b38272d64ae7db0fadae9eba6894dbb665924409a1588880ad828f729c0fe4e67a5edf43dcbf478aed1e2af448648687300e1d3f7af7372ab32d
- SSDEEP
  
  96:Q4Dqzmd9qRv7PXuXpVguXvhDiWpzXVqAdWmdWHRisdXf8T:Q4WKwj6/NiCzo6WAWwMW
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  upload/admin/admincp_user.php
- Size
  
  4KB
- MD5
  
  b42c781420b9f68af0ddd597c8cf1724
- SHA1
  
  692d96fd7b7e57c7dbe1b921b78f6a9da725a492
- SHA256
  
  848132a40ace2a3942ea797c7ca909e42f6b85a2e7e87c36935d4021afa46399
- SHA512
  
  732967e81a094b67eb7a9c06748706ec1e1285234ea457e30a3fdbf42b28a8cee0dd1e903f28ff74eae771ab313bfce6d14ab8607d3908b38332bfa3d13afce5
- SSDEEP
  
  96:N4Dqzmd9qRv7P8ESEHCvJ90kCsZYpZA774eY88P8kogUm/e8gCMPd34:N4WKwj0mcJqkCoYpZA77YR0hWgCMPdI
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  upload/admin/admincp_usergroup.php
- Size
  
  7KB
- MD5
  
  0030df1a266e4b5808bfae1d63c2aec6
- SHA1
  
  bba15740be57fbba13dd6afabac4d675aa7537f8
- SHA256
  
  fd74993da0d093d5bc3c876fd3228c2170fa12cfe3eb018b09889cb109a5f441
- SHA512
  
  a52150cd7c21e71f2edbdacbef59dd63b86f33a25ce8f5c6958ca0de02ca0cadf6a7dda60080296caadecd9afe389fc557f2fd897bad74fc9a719de329714359
- SSDEEP
  
  96:I4Dqzmd9qRv7PWuoVdSHLuA1Y9pCsoARlAuYrg7jI6p2FgujvedCDMoO9SVnwuQk:I4WKwju1oHAlYrgdC9Zwq
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  upload/admin/admincp_userlist.php
- Size
  
  5KB
- MD5
  
  1db393d5502f7fedadbcefc2a85f6e54
- SHA1
  
  914833a3a6b2f0a113a03fa346e321c0f06f87b1
- SHA256
  
  400a88ce0f13a76bedda99036acc604004b35a75a7c496220276fe1b44aeaa37
- SHA512
  
  f20062ca01c6b0f3cd06227e985931a1f144f08f9274e263958626e7d9147f220efc734709637c8fc3b94a8e3e2d6c3e7eecf3c97afeb599fad586b20d4e64aa
- SSDEEP
  
  96:44Dqzmd9qRv7Pjg1RW0h7NrCPaPBQ8BMs+kH9kpY7RkvkG8b8N7bapp7LnU76pdr:44WKwjLwx9/SZkH9kWtk8G8b8NHabLn3
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  upload/admincp.php
- Size
  
  2KB
- MD5
  
  1ee0921f3851c02be8230ec48c614e26
- SHA1
  
  9bf44a486903910e0e1860e7d36bfbc086bc9d06
- SHA256
  
  22155057e2a00979f7f504efb2ad53b01324d1822d0e465a3216c5d9ea0fce09
- SHA512
  
  317ef2ede8393142444d3c86627d228c2449916f4b1a3d4f551633759febf79fc3aec042c0982028cab0948330c3f7e72f5143b2847d5e59f483395703ba15e8
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  upload/attachments/index.htm
- Size
  
  1B
- MD5
  
  7215ee9c7d9dc229d2921a40e899ec5f
- SHA1
  
  b858cb282617fb0956d960215c8e84d1ccf909c6
- SHA256
  
  36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
- SHA512
  
  f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  upload/config.inc.php
- Size
  
  2KB
- MD5
  
  44130bd476aa422269357113e3d9c7aa
- SHA1
  
  0290f8e1f31b903afba4b0788ade31b4aca29c83
- SHA256
  
  789edf036343531a87f6cebac2d66016d3f19cb43a1a5456e72cd6f4f631c368
- SHA512
  
  508c20c7d33724070299ac5d96ca0c5c34971bdd496c2abb3fc3976576e7154ea6d6225106260e94d2b2ac727f4a308b0629701a04636ccbc1d15969f72580dc
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

System Location Discovery

System Language Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32