aaa5b307a530fd1d0a570b258663b33e8a60efeb89391d59300c671c8e2ba2e5 | Triage

Sharing

General

Target

ec157a1b245d14d760f5cc54a4bf02cf_JaffaCakes118
Size

1.6MB
Sample

240919-ym4xesxdle
MD5

ec157a1b245d14d760f5cc54a4bf02cf
SHA1

5fe443065f9fc2d87d48f68cc9bd7f152a0410b1
SHA256

aaa5b307a530fd1d0a570b258663b33e8a60efeb89391d59300c671c8e2ba2e5
SHA512

1e16de144b092fed71eec66a8101d1524a7671ce574aefd94ed70db384ae06209cc501ef0abc59ad581d2fbdf9fca769b2e0e276af5941d6209f4659494004cc
SSDEEP

49152:43E8SICylaJdXlc5pRT4C7ATS8Z8Hs612o:QfSRuh4CWQPb

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  优易163邮箱注册机 1.1 绿色版/EDataStructure.fne
- Size
  
  112KB
- MD5
  
  50b10397fb6caed2e4719747191c893d
- SHA1
  
  026666fad34ad9f939da9184d6e84a8f0194ab21
- SHA256
  
  2c235bf689a344c80b781c2d45c07af50d47508d430f2b27f75260277a9203f1
- SHA512
  
  085ee2f7bd36e7b927c426d33cd1ad38bc9d07803362471db590fbfb4996bc95722544a8f321d8542ddd24b74214755c84d0efd03d50794a62288cd55808b8af
- SSDEEP
  
  1536:FaGbrpEtoe+GwdxCTX1wQ1rnThOpeUox28oHUXgRdo5G5V601CPb:FaGb6DMxoYgH28o0kCPb
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  优易163邮箱注册机 1.1 绿色版/Exmlrpc.fne
- Size
  
  92KB
- MD5
  
  2c9211cd380016db2f943ac96e6c8915
- SHA1
  
  95c75052feab202eaa402ca520bf968c9438f6c3
- SHA256
  
  3fbbb93599c220dbf6b37138f01eb64de6412e462be520eae1cf173b7d211338
- SHA512
  
  4aa15dbfe86a6f26a6e74959258322528e32eb32ff010f2fdaa75c5b138be40c34456ab9527ede8fe3b8adfacf7a2d8c1a690cb1095ab935ad1a61ff3be41992
- SSDEEP
  
  1536:aXdod+ZuPAQYWiTuPUavgf3UwsoMWX6Sn6St3wE:aXdoauPAEB3vgf3UwsoMWX6Sn6St3w
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  优易163邮箱注册机 1.1 绿色版/HtmlView.fne
- Size
  
  224KB
- MD5
  
  2c0b196cb4b98677c77aa810e7f1f072
- SHA1
  
  b8ba545ebb7b55c7371cd7c18d78dfebbba33866
- SHA256
  
  8d32a07500380f9b900134fecf01068d025f7b7b27c998066a321710db5a5f0d
- SHA512
  
  39713b827cae220ae1d2f6b968bb689f72e583f1f5024260f54744c332ca99ed5a9508bcea6c143df31faa5a362e40fc5e7d2215a5c7f6c095c3951662a9b76f
- SSDEEP
  
  3072:fz31EsnwzDXnva3uSoSNLIUCUbaAXZAlXpgoPNr3C2jo+xPsXC:X+nvaToaCsv6XtNh
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  优易163邮箱注册机 1.1 绿色版/dp1.fne
- Size
  
  128KB
- MD5
  
  07201b1fd5f8925dd49a4556ac3b5bab
- SHA1
  
  a76afbb44376912f823f2b461507c28d2585a96c
- SHA256
  
  abebbb0981d3d51eb63abcfa68be98da0cae4e6e3b143dd431fc845d1457dbd2
- SHA512
  
  0cf673ce1b6cad38f0211231e876f00f6a8397a5f3e71680046f4a216bbe0f47f4541e5f5b49364310e41a04cce14703459725c3d9f052f9da13624e73753e12
- SSDEEP
  
  1536:tiDSn+hfeTpCwAncpZ6Z8HTiQjl1sYiKG3oe/:UDTReTgwAcp9lqKG3o
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  优易163邮箱注册机 1.1 绿色版/eAPI.fne
- Size
  
  320KB
- MD5
  
  75e3942b26c39888cc2ee9b732a101c8
- SHA1
  
  31fafc5d186101da0a546ff044765e5e22efadbd
- SHA256
  
  dc48317159bbdb48ce79932411561c2be9efc3ce952dfd698609bd4033256f05
- SHA512
  
  c664365c20fc2da3117f142f819961a7db29c3bc4a453fefdfc534e34a4c1012794c58915183822e7ff7f05c604c321c5ce1631c1fc9a97c37ebc5b4322bf040
- SSDEEP
  
  6144:yVv24BZWu21ov/di3CqinRzQA4WVEuwQ+jNb:yVvHop8SCqgrvvwQ8
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  优易163邮箱注册机 1.1 绿色版/eImgConverter.fne
- Size
  
  596KB
- MD5
  
  fe586021fef00c052702d3a6a07b9f9d
- SHA1
  
  256d471549a023bdf67975ed56b3b27df3eee549
- SHA256
  
  c305a324b87f4ae86f9cfab88b84f34f4b484ae929198c9720cf88adde57a018
- SHA512
  
  447438dce24a8fd5739e11a8ccd0d5c54df82312e3c4bc8255af4bd3f79ec4d1d71e7962444ccac2919fc0e7e8f30cffa08160b8b3f9a614d2015226918443c6
- SSDEEP
  
  12288:4PnIidX5oVGUwCsH1RzVzE6LNxgSBmB896FNJ:4jJZUwZ1RzVzE6LNOSBmBzPJ
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  优易163邮箱注册机 1.1 绿色版/iext.fnr
- Size
  
  216KB
- MD5
  
  3f1b2b497172b65f7bb15453d0d93de0
- SHA1
  
  e24556e47ced0b6ae6b89a5e280b83e15ed42e8a
- SHA256
  
  4f9ad22aa55455f56619e76a01afeb337e1f28f61c7dde5869eb2a6d8776581e
- SHA512
  
  8837e6108ffde548674487c5ebba3e3dbee8bfafa5727470d3ebaeec039baefc6dc3d756a199f4fb334754985288f0a5577b32eb41fbd69295fc9681354cd3f2
- SSDEEP
  
  3072:Mn8on8DDXsrbOfcrhoqJJeSld1oLLPCa/p9Z/oUHhRO6fVo:Ogcmqmud1oVldRp
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  优易163邮箱注册机 1.1 绿色版/internet.fne
- Size
  
  188KB
- MD5
  
  7b129c5916896c845752f93b9635fc4c
- SHA1
  
  e3fc632af5e1f36e8022e651f64eb8f8381c73c3
- SHA256
  
  adc45970f4a0eafd2f372302f64836802380c253096a99ca964677a70a7128f8
- SHA512
  
  c72dd4043e7cdc0ccefe26ce8a6d05701b4c610f88ab827e6731296da76b8cbe5b63c0970954ec7616369172b8b8f9cb546545271be3e86c18c54d0b9cad8f95
- SSDEEP
  
  3072:mpTEys+TR7yRoHzXjlhvtcxVIThpEbbAKNXoqlSY9M02MF8:mpTEt+ycLHlCIThpEX9+XM
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  优易163邮箱注册机 1.1 绿色版/krnln.fnr
- Size
  
  1.0MB
- MD5
  
  44e2ca67c060fbe3dc0d030149f5a478
- SHA1
  
  5df61eb626bc3849893701942114609c1086d496
- SHA256
  
  6ced19283dbbb95f264448f380592f4e98ba8228efca2f68821ab3ae61029d93
- SHA512
  
  1a348c7585d78dd68c1d0e059ea1d7cea57c1aeff734f834f75025719b9fdd0e9bb16aebe75e15502a1b83106387eaa9493b8990999e0a68b62c1afdbc8cf45e
- SSDEEP
  
  12288:rb0+sqCE6yy4bmhSd+1YCHYFZzktq0TNSARuOrRUVbNGvNXXYA/2b:AjE6+bhiHYF5kZI6uOrRUjYNXXYA/
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  优易163邮箱注册机 1.1 绿色版/shell.fne
- Size
  
  60KB
- MD5
  
  98174c8c2995000efbda01e1b86a1d4d
- SHA1
  
  7e71a5a029a203e4ab0afc68eee18c39f4ab4097
- SHA256
  
  90284c2ead0598faa715cc90c1f53b83b916099c918ce7f816f0b4550ff55ac6
- SHA512
  
  a37059062a99cd2a9fae15850b49068752ccf0be9f1d86c3f812a689b7c4d024771ec2b66adf9ce950bc5b8b117d457aba87d586cf112a1a30239531bfc8cd06
- SSDEEP
  
  768:eeZWaAKT41c1IYc8HBbrYNYVw2Fj9oNIqF42eofVU:eBKT4fkrymV7oNIqC8f6
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  优易163邮箱注册机 1.1 绿色版/spec.fne
- Size
  
  88KB
- MD5
  
  51d7be0ca4431fec32d0ba0978cb2cae
- SHA1
  
  1aa65ca721bd881b615b16602f6bc7cc4c7d74d8
- SHA256
  
  1e4d44d3a865a766517057c199eda71e005e56c13fce2c4137b66d185a416986
- SHA512
  
  5cf2214bc60dde261f44aa339ba1943f5c9b70337a11d064185224b3dcfc705e55386c95de280b6d05c4b60a318abbfa3d5728724c28dfc009d57c3bbfd76ef5
- SSDEEP
  
  1536:DcrPILJRJT/DpWc6hVoabwhfoeW7JsVRj0:QrMW1ojfolax0
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  优易163邮箱注册机 1.1 绿色版/优易163邮箱注册软件.exe
- Size
  
  1.4MB
- MD5
  
  5d21026d1a04b653c305eaf338949459
- SHA1
  
  85127bac6dbdfe5eb4cd0cf704071e9b9afdb766
- SHA256
  
  ad5d8cac4fff52cccb641ea7a562727f84f3c023cfd01b5fc8f5ecb84cbc6aca
- SHA512
  
  f8a945a1bbc198ea95afc17e8a0f88baecc915288c807c3a18bf0c41d9b09a737970b378e30b7b6f5c67d62595eced8a9355d0bbb467be48bba7faaaa5afdc96
- SSDEEP
  
  24576:tsi7kx7r3SdkffY4uvXLulKtDbmNyyCTZ:tZ0I4UH2ETZ
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  使用说明.html
- Size
  
  79B
- MD5
  
  e42e985ca15fa65fdf0ce8ba8c88fc9f
- SHA1
  
  c2f83bf5752b437420b5453eac38f3fcdac9ed26
- SHA256
  
  befe46777de125b91e2e2496d7f311797b1902cb27c96780729749b86fca877c
- SHA512
  
  c1d5d28db26910be83f19b074f56dec07e4d1b3900080113a16ccbc46fd6682edb229b7927b0501a90f1e7773d74a340e35fc4589be600401570672fb357ea85
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  使用说明.url
- Size
  
  155B
- MD5
  
  572730ee9e261904cdf0e17b6e0ea309
- SHA1
  
  20d050630daf3cad339e7e379e47a79e2feb7253
- SHA256
  
  b35e76792cd983a6f84d937409777d29121e9e335315430863cf4beaf6f8f4c6
- SHA512
  
  a555eb1ba6f5e57b3ff643ec4d05b2b54a22277f27e931e2d7e780d02c245e5e8d9487e3c89a57737cf118edb51aa93d42871734e87ead31618d45a2c65af3c9
Score

1^/10
behavioral27 behavioral28
- Target
  
  极速软件下载.url
- Size
  
  299B
- MD5
  
  1362b6386a2252adc489fb757e56b1c9
- SHA1
  
  57e373818ab781c3e80c0fe87da73840315d0ffd
- SHA256
  
  49524d97ec5bb9bc481c692c1cdf3cd85a2f101186fa5495b5eb46e392d6b8c2
- SHA512
  
  1d4cc4e9137c37033ff54fa009d58493347874b55fd16955fe46df25e23a18efd52fa55c97ce46ddbfafc5b7d6546f9383690511b5c1e04bc717f2647dbb9cf6
Score

1^/10
behavioral29 behavioral30

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30