b78cc99ed8895551cbca1a92c0aec7c97e20e9b840b64b930fa30ec0ef7e629d

Sharing

Copy URL

Twitter E-mail

General

Target

fc7f75df8bdeb7d3b7ba1beaad1fe47a_JaffaCakes118
Size

648KB
Sample

240928-rwg1patbld
MD5

fc7f75df8bdeb7d3b7ba1beaad1fe47a
SHA1

b14f84850888eea21b29589cf29fa43296cf3c49
SHA256

b78cc99ed8895551cbca1a92c0aec7c97e20e9b840b64b930fa30ec0ef7e629d
SHA512

bb8e4fa8378c523cb19b4b49fbafdb592981ff395512223f3ef3fd7cbfc0a500c34fd5d4a864a5e4b664b837466144b8e6739757501a1a8c0823c3ee2dd886e0
SSDEEP

12288:kFX8RG7sAm7ar9Tv4+H1klZPk1H0tiS3a05qZi5:yMLar9Tv4+kk1ApaHU

Score

3^/10

Malware Config

Targets

- Target
  
  AnJian/LHB_ShanChuAJ.asp
- Size
  
  1KB
- MD5
  
  f4fb0bce6cb734673359c568d3a2f29a
- SHA1
  
  1cd6926d0ecc955333e9c011a76a68e5d4207852
- SHA256
  
  ff15993b87f6948eaf02051b3ba15dc05d11ab2564b631278a50787eeee127a6
- SHA512
  
  5895cead9ebd6f9651515ece636e00bddfe96039534bdb795546825ad52f8bc261b73e71508950dc4d8ea1822cabf5c7658ac59393b17a6f4fe28bdeddfac057
Score

1^/10
behavioral1 behavioral2
- Target
  
  AnJian/LHB_ShanChuRY.asp
- Size
  
  1KB
- MD5
  
  6d5654aa9ee749f23f96ee868f3dfb84
- SHA1
  
  93cada7e9b74970ee9af85f7d5d229061c4925d8
- SHA256
  
  52d0910af5cec1a267a779b859d73e47576a98ca9e56a5cbc46ec99681bdc028
- SHA512
  
  daea195b53251057a7fa74c1ba2bc764fe7758059251cb8a70f37de3fd0f356ff4a0f7c773cbdd4935901333f25fca156ce018b4573be9f4ccf816124cfd5c82
Score

3^/10
behavioral3 behavioral4
- Target
  
  AnJian/LHB_TianJiaAJ.asp
- Size
  
  7KB
- MD5
  
  2d6ae1162bef1fa54aa3de4998e84983
- SHA1
  
  5733bb6d40c5a0380fee9f00080e52961d7eaf1c
- SHA256
  
  2bac4a7555878767d3312eb305651713cac345e9ce1e974193292473f3ebeb93
- SHA512
  
  63e7ed8ccea939682c387e7624bb0f0b9c7f223e10b6cfc6cb04c1a15442ffe3164b7acb02fecacc42c08b255f2604615000417d742170b498e48eef010f69b2
- SSDEEP
  
  96:Uxnw782tB+ycxMELBLYo9gNCQhiVELIu1Zu00YiCrqg59CyNCnNDdtxu:Uxnwo2qycxME9kKgBhiVE0ubu08wlMM
Score

1^/10
behavioral5 behavioral6
- Target
  
  AnJian/LHB_TianJiaRY.asp
- Size
  
  6KB
- MD5
  
  d478aa9d99bb90f807056d1345826fdf
- SHA1
  
  7ec92442735e324348c2bd0e14c114e6b94d3f43
- SHA256
  
  999b874cdb54d900e3299867fa6dc7f19ff32cfa397c5daa26e5d1b3353a9ee0
- SHA512
  
  a33ad39e60d496cb3e00c6477b3d33ef302ea82ecb3c92a7b60ece9964d9ff1b8e52dc15b4df8fc196014089f29bc0190cd41ec96247a263bd489710eee9b663
- SSDEEP
  
  96:vew782tBxcxs+eEcuMR2fX5NkCQhlAgqDxIs4wv+PwUoLH2ABWmjo0YaS4ajVzuS:vewo29cxVMuMREmhlAT67mEN84
Score

1^/10
behavioral7 behavioral8
- Target
  
  AnJian/LHB_XiangXiRY.asp
- Size
  
  4KB
- MD5
  
  4673496d648b1065a6175d247f048e89
- SHA1
  
  d2ee655bd12752647fdef25883322112526ff5f7
- SHA256
  
  a4daaa0047bf1bd1191eb9c9126874bfb5a4b7a3b57d0874243b7f780517d328
- SHA512
  
  bd5093dd5274d1992f0ace1e823cb87e67aaf8e77e2e36b964f1981ff4f53be742e090588991038e1cce3809af28bf349e85c634f309f756fa7df47f20d40d13
- SSDEEP
  
  96:v1w782tBGELS2blqLYA0mXHFUWhcWJ+ax:v1wo2qE55qYAbHSEcWJ+ax
Score

1^/10
behavioral10 behavioral9
- Target
  
  AnJian/LHB_XiuGaiRY.asp
- Size
  
  6KB
- MD5
  
  ee62cd60859c2aee376303e609397a7e
- SHA1
  
  855a54a4209bcce17373146274774c9a667ad781
- SHA256
  
  188c257361aedb1e56f796459f90bd0bdd31155d80c7908c890aedce622d8873
- SHA512
  
  d00beab780f56a6d633afb08688c495ab77cd73cb666f9803be0e53baaf3fee8ece82af82e56d70fd4acab369a7401109e49112560c6fe8863e44c945bedbcba
- SSDEEP
  
  192:vNwo29cx58uu7524PCbQhIE55qYAVr5wT:vK7m8A4Pzf5cYqlwT
Score

1^/10
behavioral11 behavioral12
- Target
  
  AnJian/index.asp
- Size
  
  9KB
- MD5
  
  757719a1102782ccaf31dd362e15a6af
- SHA1
  
  b755f97c108e6169ee28bcfee0269af5b6694d06
- SHA256
  
  220f518ad0a50f0a69aad6150a8abe83c05ac1f86c2b0cc63752b79d50effb5f
- SHA512
  
  6459d7d40a4d383afed3061cfeeb4ca7f852540be7297f5cf57fa56ea49ada9ac28ae9f5d1f79deda950b6f8299ba98a44449e199be9b4d1927b7516616211bf
- SSDEEP
  
  96:Qbkw782tBoUS7Cl/EreHL5LY+BhCpaYuB5y54eu5W5L5w5HWgE4MDLM6wDKAs+r6:Qbkwo2a7CdECH3hZffT+Q3ynd5
Score

1^/10
behavioral13 behavioral14
- Target
  
  AnJian/index2.asp
- Size
  
  10KB
- MD5
  
  8cb4b22dcdc23d544d66190fe833ffea
- SHA1
  
  b60b8e55929a67ce550acc022577f66305283c30
- SHA256
  
  e4cbf6e1bdecbcfaeca81704b2d58f1d7ba138faa78cb9e66240dd34b8b4e781
- SHA512
  
  5f2b698daf030c973090a8125ae9b02f3e025a9258aa3cdd9f8db0e6d408124934d3e745b8c87b11c4ca7a5d0594f359532991a187bb999389bcc54849deb406
- SSDEEP
  
  192:wbJwo2RQIx7MhXSfX6WZmCdsHQktiVlPT+Q3yndtdeBpdeB/:wbO7aIBM6/T6dtgBpgB/
Score

1^/10
behavioral15 behavioral16
- Target
  
  AnJian/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral17 behavioral18
- Target
  
  CuoWu/LHB_CuoWu.asp
- Size
  
  618B
- MD5
  
  5e5d1c35e1ee5db1e6c88b151f97d6ef
- SHA1
  
  40b8d9c24ca8f7d101f7b8227535ffde918c89ec
- SHA256
  
  c3bfc11b5de359d6c068e0c8cb7297988b1b74e40fc51f796c491f8b27431334
- SHA512
  
  b22853fabbf9b861e8b0656aecf3e5b4ec32e450264ef83b26ca4ac78fd75dddf00735d464c4f080390de73f7d3f61dec11c6a21ec8df6f1a8540c59d976f693
Score

3^/10
behavioral19 behavioral20
- Target
  
  Manage/LHB_ZuQX.asp
- Size
  
  5KB
- MD5
  
  1e937a7f6ba1bf3dedb9d2d194ff7e2c
- SHA1
  
  7f15cb9117ec5ac97cd01e15d6cca8e06a7ea9fa
- SHA256
  
  987e2c3288235900a0065b4f57de0850c523d24adc34183a0de71d003601fb85
- SHA512
  
  36eaa5bdb8d855440caaf8b712252179ba8ec49e30f8220af477fc2965a3f33c0a28c3b9baf2708dc11365669be877d7ed9d3ca01d41539575763a8e31dd1f09
- SSDEEP
  
  96:nBK0w7agAnDD664PFisC0q9hF4O1zlh5GuSS61mCNG0Dkzsb2HYwddf7OEXo9:nBK0w+gaDObisMT4OlSubaWobF
Score

1^/10
behavioral21 behavioral22
- Target
  
  Manage/LHB_user.asp
- Size
  
  2KB
- MD5
  
  4cee193135da8e969dfd76dcb91acede
- SHA1
  
  e00c5373328242ed480af927395d06b5ab6c23b2
- SHA256
  
  110a0c0b29ef31778e5eed9839f834b52d3b6e897793c0f0be97af0a8d80b1c5
- SHA512
  
  54f6a3aa0844455e2304aea6f8dbe1ccfa8d9bafa0ecf509d1a920e5b346286e6351d252675f62a1f962133318a9e930c0bb2b37837aa3e7b5a731a627ec5a15
Score

1^/10
behavioral23 behavioral24
- Target
  
  Manage/Mydesk.asp
- Size
  
  11KB
- MD5
  
  8aaf0a385be171460a3049ba34426a07
- SHA1
  
  cb583c8fbc5cd8b8eca6983eb579674853067471
- SHA256
  
  38940f6e978b9ae0650f7b7c7e9c3ef5f1c1f00d2b39e135d14492e64dc01f11
- SHA512
  
  14b411795faf5205c0c1bb4e0c48b82916fd4a0c6ae025952f163da55d2cc6664b7992a3257afc2f2eefd9a0c04be66345a19259357eae697c5f4bc69f107ccf
- SSDEEP
  
  192:FK0w+gavANpxh72d02wX+l6cSFT+Q3yndfqU2wBkn12M:S+gzxh72d02wXT6dfqU2wfM
Score

1^/10
behavioral25 behavioral26
- Target
  
  Manage/index.asp
- Size
  
  590B
- MD5
  
  788ca2ca8b18c4c1c70590015d7a02ab
- SHA1
  
  5999d1e66fbab9e25fa34aa01560c858d6364180
- SHA256
  
  56458e7ef2acad5da2a46f75869f764064a416c39ba246929553d7a9409fd20d
- SHA512
  
  eb7ad1f32809bf1d395139598eed3151d3dd93d57436d8cfca3589c514d761bf49746af95ebf537903667faf771780f1688969a6837b785034d695fca823eb8d
Score

3^/10
behavioral27 behavioral28
- Target
  
  Manage/login.asp
- Size
  
  4KB
- MD5
  
  616aac427fbcbc673875326af5ab4080
- SHA1
  
  b1334da81187f5751ab23793b1b6647eaa1a57c1
- SHA256
  
  f1abafdb49f03438a718467a96c54021cb6f325ef9e98e25fcead6d69376612e
- SHA512
  
  99c989130b4b736b6d8358788d43bcb04282194c7370ccbd12f66a016cc3346a0149f29a4688ed0c2ca6dd5b48e9b21c3e35cb88f103bfc89423395b1f221715
- SSDEEP
  
  48:T/LrPX+enw7k32WVYAnkFNLAfziZPPhUuaNMBxQmaHzRnIA5918KLz17XNxs2Adu:PK0w7agAnkr8LaPaNaFa9IUbKVddy/p
Score

1^/10
behavioral29 behavioral30
- Target
  
  Manage/logout.asp
- Size
  
  1KB
- MD5
  
  076a68a28888ac851a19d1d21db9ed46
- SHA1
  
  df70534270b75b5667b4f06a671ed8d982006fa5
- SHA256
  
  aec6f04ec5ec79c9c7b9c3955006baa9a57d491b4c1edcaec4d9872652f33c69
- SHA512
  
  82b424a99fc34ac401dbaf71177a6c7cd92949392b5cc937c869e923f0693e84639d21e28be315dab49c51f24c92c0aefdf93aa815358ffcf43c1ee6d1a85b33
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32