7e2cd5b1fbbc97556ce2866a6e1fbe10e877e2a579800af082fd571ad3ae093d | Triage

Sharing

General

Target

eaa08d5603b44279d98938ac389859ee_JaffaCakes118
Size

3.4MB
Sample

240919-flel2asama
MD5

eaa08d5603b44279d98938ac389859ee
SHA1

2b6f5d8908002a2729c2eeee753178aa7fa669c1
SHA256

7e2cd5b1fbbc97556ce2866a6e1fbe10e877e2a579800af082fd571ad3ae093d
SHA512

96cbd9c873e825ba805213958b17dceaea98cd81656e213dc1d75b42ac74a69320289e93c35edffbb00b32f2f8ba78494c08102eb30da260072ef59b979bf7d3
SSDEEP

98304:BwURqzoPf0+3f2mrpiJs7YahI0zmdVmhnws:BFqzonLPsspaVmhnws

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  potian/china_login.mpr
- Size
  
  1.6MB
- MD5
  
  d37b09604b83eb93c6c2f7784436e17f
- SHA1
  
  1382be70bbe7f549ed18cb7058d90adaa49daa3b
- SHA256
  
  2b0def6e0f6fd0c87f9daedc542f9699ebddec56cf2d9298700b455317668b29
- SHA512
  
  ca0ea0cc7cb5089c1ac2ba16e3a1a3b4cbcdeadd78eee17f78d2d483aaeb94bd988fe7c216855c27b9d886e53956856abfbc7fdb2459321e3fa29f5707f013b9
- SSDEEP
  
  24576:gNN0yZWsQOeo3H4NSuEk4e1CT1BIe6iM0:VyOj24SuGe1CT1Bn6
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  china_login.mpr
- Size
  
  1.6MB
- MD5
  
  d37b09604b83eb93c6c2f7784436e17f
- SHA1
  
  1382be70bbe7f549ed18cb7058d90adaa49daa3b
- SHA256
  
  2b0def6e0f6fd0c87f9daedc542f9699ebddec56cf2d9298700b455317668b29
- SHA512
  
  ca0ea0cc7cb5089c1ac2ba16e3a1a3b4cbcdeadd78eee17f78d2d483aaeb94bd988fe7c216855c27b9d886e53956856abfbc7fdb2459321e3fa29f5707f013b9
- SSDEEP
  
  24576:gNN0yZWsQOeo3H4NSuEk4e1CT1BIe6iM0:VyOj24SuGe1CT1Bn6
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  potian/mface.dll
- Size
  
  2.0MB
- MD5
  
  06b6c7f76f6b756e5e5d7d0a9f8057d6
- SHA1
  
  08bc3d8508a41de1d48746eea2e2921f0268c94a
- SHA256
  
  bdd7efd3b1e2cf65996123e72ff5943baf8948a8da821c67f0ce9e6942554052
- SHA512
  
  c5e8d15ccfdfee41eca9b1a3e1952a090c84d840b9ca6d713100a2334df84c34239c6d51a41bd3c8219e6d34d82d42009b729e7ca7e503dbc71e742b03cf31d6
- SSDEEP
  
  12288:xPqqXEZxpbEu7lORslvN7aIrTAcNeTlr3X9WWilUXidEpXuLbNAF5Kp9NQ:xSqXaxWu7VF7aIrccNeTd3tzM9N
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  mface.dll
- Size
  
  2.0MB
- MD5
  
  06b6c7f76f6b756e5e5d7d0a9f8057d6
- SHA1
  
  08bc3d8508a41de1d48746eea2e2921f0268c94a
- SHA256
  
  bdd7efd3b1e2cf65996123e72ff5943baf8948a8da821c67f0ce9e6942554052
- SHA512
  
  c5e8d15ccfdfee41eca9b1a3e1952a090c84d840b9ca6d713100a2334df84c34239c6d51a41bd3c8219e6d34d82d42009b729e7ca7e503dbc71e742b03cf31d6
- SSDEEP
  
  12288:xPqqXEZxpbEu7lORslvN7aIrTAcNeTlr3X9WWilUXidEpXuLbNAF5Kp9NQ:xSqXaxWu7VF7aIrccNeTd3tzM9N
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  potian/取MD5.exe
- Size
  
  608KB
- MD5
  
  a8df9280b2f28a373c7b1e3d6b56812e
- SHA1
  
  8258d933c9fe39bc6de09cffe8dd1d5a65671194
- SHA256
  
  78deb6e59b37f7b78fd68d1bce5e204059061361c2a226ead6303c62c8ab1786
- SHA512
  
  01f9844f18b4a97ce70a096ab4ee080c4ac1c74e1acd14cf6b2a7aa0df30c392d0cc957ef9844dddb6ac8d9b0ab3d62d7c1e71311e8de796fb58be376c8171b2
- SSDEEP
  
  6144:rdNIpO4YhZIf4XobkpgVBiCo1eHM8geBSY8Mc7oDcfX6GO4/baMBu2q3T4lok:pNIR4nekpgVBileYiwLX66/ba2u2F
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  上万免费版本下载基地.url
- Size
  
  112B
- MD5
  
  e03edacde67b4ecfb021ce78a919d5ad
- SHA1
  
  030d933b78757e3bf4f6126bbb357c79ba41db51
- SHA256
  
  6df8c53cddaf3fd630fb3a870535d8f840df526f5c1fd10b0d589f3526ff9620
- SHA512
  
  9e61567d9fa5e95e5c6bc2688dccf4c2e51bb5aa07b67671fd1babc4e62f63ec40a8324a1ae5f56ec1d19b737639091e38f2fc7523eda8fd9c813b191e71699b
Score

1^/10
behavioral11 behavioral12
- Target
  
  完整商业版本下载.url
- Size
  
  111B
- MD5
  
  e9489d9e668a1f090c0df3d475eb5433
- SHA1
  
  b19aa1848ca5d05a3619eba05e3e3abf1996ab9e
- SHA256
  
  2213ef15e09230e9631aab2150491c47ab8f5a9b1e589eedecdaddca406996bf
- SHA512
  
  d33efb730273412f464423f0b06e2dbffd8ef230045bedfa26d3dc5df70e21d3429579feb09b21ca9410a1aaefb0b5b3514346b4654f6076b4c53e27d5edd532
Score

1^/10
behavioral13 behavioral14
- Target
  
  登陆器配置工具.exe
- Size
  
  604KB
- MD5
  
  4cb57cde46d16b06e8e2e9e568f31b22
- SHA1
  
  9d4021848e405dc9538c50bf6c47d474a0f00e0c
- SHA256
  
  a5de2f092c93d0038b3530296389b3ec54b73c09560e677bec948f445da6de54
- SHA512
  
  f39e97b9a17dea786ebbfd72574ec418d8158f485e28dbcb5f439bbf884daaf98c25e38684f81be1b8db26d1a2cd9c26960f435e473878a8702ce5d7db55f8f5
- SSDEEP
  
  6144:Z15vLnXFqwMq/NOOeDUnahOMRliroS1VRk+Yp5MlifFZpAlTnyIEp2UPnuuRa6gK:ZbnXFD7eInahO4ccM4ZATnyV2atN
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  破天登陆器.exe
- Size
  
  2.3MB
- MD5
  
  deea4d7f2fb54adc96b3eff714f27301
- SHA1
  
  e8075bb62a52e78aef129855ae1da7f170879e02
- SHA256
  
  f756b6e36c403bb52105317c28594652c2c06e163da8117a1aaad9b3f9212010
- SHA512
  
  7d00729673af097ffbbdb7c2d227d7f5eb7f278822bc770ae5664f5b55fc6e3ea79f504ea8e7c09e77b58cc594a321bcb8d483f09ef87afe7000988ccbcd4445
- SSDEEP
  
  24576:q/ell36cEdzgzwpIyvCjAGpoJlG4alZEBlZ5L+KCvPeygjHyX6Yfk58KyfFclfH:q1dcCImxGylG4aDER9CvPfkSrf2lv
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  网关.exe
- Size
  
  668KB
- MD5
  
  5492199be47954b6eb25110039f50e64
- SHA1
  
  f6472bd91a827d2d59e2556d3fa3fc6d75e32424
- SHA256
  
  b65da13137b98a1cdb39b897a93777d4e08dddc92df7df8db0f5740d1fbb4837
- SHA512
  
  4d8ec1ea65f73d05a19b50fc9d3d4a31434efc3e5615ba233639631362112f952deb00000dc95b421e765171be1a0ce6aa51a650fc70387dbf0b582fcff1b199
- SSDEEP
  
  6144:+u+IPf0t/Zpd1qRmbEQpgJqNsV1Kt81TYTCcDEYZIZHitObkYhElu3+32vmW77Bk:+uzf0dx8MbEQp4qy4DYeUbkooNW781
Score

3^/10

discovery
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20