913d70b3e1f3e3210cd5a896339214fe3003c8ddf39a39429525c90791502745 | Triage

Sharing

General

Target

eac534f3608daa24790d1ada54e76967_JaffaCakes118
Size

1.3MB
Sample

240919-hcshmswakl
MD5

eac534f3608daa24790d1ada54e76967
SHA1

06e02d508644d85b66e3b0cd45dae306ccb9a6b6
SHA256

913d70b3e1f3e3210cd5a896339214fe3003c8ddf39a39429525c90791502745
SHA512

9b5ac0355f580bef2db16bf582b0e6b5d991256727281a53cc8f5e81fa4528e2f4c543592cc2799953e713467def9659486b3e7b56561ff4be9998371793ed72
SSDEEP

24576:kSj8cAd9xkD0T05BPCn/cOkYr/7avlikWATz/VMVyijdwk/vnMAXAhqrfjqW:kSIE5BPjOkYr03/aUOfMHhqrfj/

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  JFnews2.6/CNews/DaNews/20061114111856.htm
- Size
  
  4KB
- MD5
  
  c3b978a27d202822dbe9475e7840b25e
- SHA1
  
  37361e7c22c8dc63fce77304a8e52f228adf994c
- SHA256
  
  0b01c4ddc1163af4c6869e319482c95bfa9674eafef0ba8370611e6448df2451
- SHA512
  
  b61b3398c8122c30324438455f149ded908bf6eeadb02e7dcb97e879855d35d1ac57d48e581ae5908152aafec1a64fe587cdf6059e1dfc3989e1e81d8d675972
- SSDEEP
  
  96:XRNf83ZRAF3fnr6JeyaSkU5UkoLe4HtyZkKBgUuYh271X5gMxOuy0P3aRAsRARRj:XXf0vABfr6c7U5UkoXtx2Y+AwAmAHA3U
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  JFnews2.6/CNews/DaNews/20061114111856.html
- Size
  
  20B
- MD5
  
  4658004004f3dcb0826a6a1bf3f4c922
- SHA1
  
  5fc4333e443302af55f5a8c75d18d7cf006dfa11
- SHA256
  
  cdab85936214934c7135b5465a8369d2b468ca7025aa8770f2d4072ba571699a
- SHA512
  
  ed0452b13b15877c8bc28ef7805b3f62b021e4938b77c73be39214b5c693ec1d7df8bbd3d6e9a45cb33f7aafe721e99e0715149f9d022b7390cb3d36c18081a7
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  JFnews2.6/CNews/DaNews/index.htm
- Size
  
  74B
- MD5
  
  a72b8360d000d3405e251c2f3a659ba5
- SHA1
  
  8ef1d989e8cc3d224c0b8b4de8b9c9587cadd96b
- SHA256
  
  638483faa914382b1dd56b946be639eba3c2a8db4c69693bf187f94df81c8cdd
- SHA512
  
  ff73991b11ee5eb721050c29dae9ca3df5d8c3aeef4a39c3b5dca5033166d8a5aadc765b403575e9cf262c6316322d7d3463a57a91c6e9a1e48f486076c73b4e
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  JFnews2.6/CNews/HotNews.js
- Size
  
  130B
- MD5
  
  1ffb53eeff5a6dc6f0c85435d10b227c
- SHA1
  
  e023a4fcb9c879711a501db4bc17c7fc310a7579
- SHA256
  
  c49f3ec789ad186bc803e5735fdba0627f79b47ecee5970b4c224021af75589f
- SHA512
  
  5b43f774f3b7fff9c5ebc190b59d817a59951f4ef16af31bd5e3f7f3da06a634f5c0b47a54c143359d326710e51a52d8f3ec82f0a95cc74b01175ad1c6242363
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  JFnews2.6/CNews/LastNews.js
- Size
  
  130B
- MD5
  
  1ffb53eeff5a6dc6f0c85435d10b227c
- SHA1
  
  e023a4fcb9c879711a501db4bc17c7fc310a7579
- SHA256
  
  c49f3ec789ad186bc803e5735fdba0627f79b47ecee5970b4c224021af75589f
- SHA512
  
  5b43f774f3b7fff9c5ebc190b59d817a59951f4ef16af31bd5e3f7f3da06a634f5c0b47a54c143359d326710e51a52d8f3ec82f0a95cc74b01175ad1c6242363
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  JFnews2.6/CNews/amerNews/20061114111752.htm
- Size
  
  4KB
- MD5
  
  70b57cbf124496e624f0537ac5a1ccf8
- SHA1
  
  a15b40cf8944d473bc8f117b4d829ad29acdfc32
- SHA256
  
  68952784d030f0b40c7ba231c4f5c352f97343303ef7cfba322ff574746b5c0a
- SHA512
  
  52b075dd234c08d215677c7c326c511b9f1c5c80ea5d910b05ed640dd188f96171837aacb4030f85bc46470a4c2db7497848a8719ae5baeca79f034c7dab432e
- SSDEEP
  
  96:FEf83ZRAF3fnr6Je/ieUU5Ui0yZiXMNv4/9hgMxOuy0P3aRAsRARRAcORKRg+n9l:Sf0vABfr6cqU5URzMY+AwAmAHA3AL9l
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  JFnews2.6/CNews/amerNews/20061114111752.html
- Size
  
  20B
- MD5
  
  4658004004f3dcb0826a6a1bf3f4c922
- SHA1
  
  5fc4333e443302af55f5a8c75d18d7cf006dfa11
- SHA256
  
  cdab85936214934c7135b5465a8369d2b468ca7025aa8770f2d4072ba571699a
- SHA512
  
  ed0452b13b15877c8bc28ef7805b3f62b021e4938b77c73be39214b5c693ec1d7df8bbd3d6e9a45cb33f7aafe721e99e0715149f9d022b7390cb3d36c18081a7
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  JFnews2.6/CNews/amerNews/amerNews1.htm
- Size
  
  2KB
- MD5
  
  00010293154c09d114c8af5651e1e42c
- SHA1
  
  3ab11e6f7f2cf82ca94ca3b10f0caf3f726dfbed
- SHA256
  
  f6df4dd554ed08a6f41647d318a2cdfc7ae32563db42b732649d4b76471ea8ef
- SHA512
  
  92f0193ad56c0ec233ca106ee293f4d7c47504d1f9588a3b5da63d3155ad536d298972899ba8c3da920098aee60a269e45c221215eca4b769490e7667cd620b1
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  JFnews2.6/CNews/amerNews/amerNews1.js
- Size
  
  935B
- MD5
  
  6b7792947cb3584a8e2708091157e908
- SHA1
  
  7493224cd60f4a962be2956c2f1fe984a6f15eba
- SHA256
  
  cd2b644526a0734f99717dc816dd420d5174d66b5f3dcda13d9930a7082f758d
- SHA512
  
  9f3aacda08e7c094605a4fb63be68c7c833b740ce245fbcde9ae58b326fb4fa4ec77c21e29030ec9087af657d54e1e218b4a5d0348b31d9e725bd60a3f145e86
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  JFnews2.6/CNews/amerNews/index.htm
- Size
  
  76B
- MD5
  
  3bbd36ae4f3fc8e4e9d7b2bb8e9ce649
- SHA1
  
  184ad08082dc5d7decb17a791576c077275f9630
- SHA256
  
  e228d32eeab1831cf10e6ba15347da98ed7f4fa2eedbfb451aa3543b70992a59
- SHA512
  
  c9c6893d7dd6b544957052cb946eb24f4b03f29427a60c3c043404b41716e5d80369333d72c880475c0b3377f1db1c12322c46d7d1ae1f192df16620846e3e8d
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  JFnews2.6/CNews/amerNews/index.js
- Size
  
  263B
- MD5
  
  ca7168cd7d3633f79b01b88ad50bc463
- SHA1
  
  ba7b46ede3f6828f2ae4f39c63170dda47d21855
- SHA256
  
  ccaf67494596d2b5fa7ec16d58d54dc0716efeeabdb00b9aa3b51222a2540a42
- SHA512
  
  117dc562d450967317ea71cb76823256275756b8a0b19f29946672abe815ba2a368b539a5dbb22f4e194650d08ec71ab93369e7d13de38b0e89eb575e7ed481a
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  JFnews2.6/CNews/index.js
- Size
  
  210B
- MD5
  
  c193bff4323283dd472d01cd31323dbd
- SHA1
  
  b01d615cd5b3585b97272da531b60797a888705c
- SHA256
  
  667d7ce428e9d0a4fbe36a8cc1edf0e8ce363b30307416009432e7b3df692844
- SHA512
  
  93d0d314d19376976ef9a33f574eb4dd02a65c5b054c6f360e104e057a19dc8be65802dc5704d3cb51c43359aa779774dda0188a90cbf71141f07bf6e20fda5c
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  JFnews2.6/ChinaNews/HotNews.js
- Size
  
  138B
- MD5
  
  74e3c5aa6c42172ff49b47025042591a
- SHA1
  
  ba3140771137133c247fd57c8b93004e1e3667a4
- SHA256
  
  1ece4620c790ce3a8c80a8d6b7e4bf139c2f6ecaf42f71c9546eb8024358023f
- SHA512
  
  9e25063f23eb97aa3a21e468ce7f2ba1e5c084f96dfb8158d15a39df14c10cf150cb028a4c00be65a1e7707408e852bfedce798c2aca1516597ebddbbcee4a0c
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  JFnews2.6/ChinaNews/LastNews.js
- Size
  
  138B
- MD5
  
  74e3c5aa6c42172ff49b47025042591a
- SHA1
  
  ba3140771137133c247fd57c8b93004e1e3667a4
- SHA256
  
  1ece4620c790ce3a8c80a8d6b7e4bf139c2f6ecaf42f71c9546eb8024358023f
- SHA512
  
  9e25063f23eb97aa3a21e468ce7f2ba1e5c084f96dfb8158d15a39df14c10cf150cb028a4c00be65a1e7707408e852bfedce798c2aca1516597ebddbbcee4a0c
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  JFnews2.6/ChinaNews/XaNews/20061114114927.htm
- Size
  
  6KB
- MD5
  
  e2ebd652491000dd0867b01d55ba73bb
- SHA1
  
  12610cdc95f5bc3ab1ca42cbbd05902b25acea61
- SHA256
  
  e18424fba570cf5e37986a8b71230929728d8f187c11446dc3b8c79b86ee2c4d
- SHA512
  
  b77c393c059d7cb36c9ce6c7ced2545a2155d5a552a2a342a8aa16a2348844ff64ac17c5a0efa8c5bf71a8dda44f45f0e73555fbec58e7528be8a59270f503ec
- SSDEEP
  
  192:1HhAsfx665f0JABUUD/6lDpH7w8j7BahOY+TH0YdCjewAmAHA3AHg:5hLf7f0Jm+Ns82OlRwFGQAHg
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  JFnews2.6/ChinaNews/XaNews/20061114114927.html
- Size
  
  20B
- MD5
  
  4658004004f3dcb0826a6a1bf3f4c922
- SHA1
  
  5fc4333e443302af55f5a8c75d18d7cf006dfa11
- SHA256
  
  cdab85936214934c7135b5465a8369d2b468ca7025aa8770f2d4072ba571699a
- SHA512
  
  ed0452b13b15877c8bc28ef7805b3f62b021e4938b77c73be39214b5c693ec1d7df8bbd3d6e9a45cb33f7aafe721e99e0715149f9d022b7390cb3d36c18081a7
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32