ce677290fb82a367ece17b7e4d5477a1cf62707865ebf01adaadb1a8d2fb7343

Sharing

Copy URL

Twitter E-mail

General

Target

fef1b2c38bb06dabd8e7d4e0c1ca626e_JaffaCakes118
Size

252KB
Sample

240929-t8j2xsvgnh
MD5

fef1b2c38bb06dabd8e7d4e0c1ca626e
SHA1

e6aeda7c9bacf0a5eb7cecb09fbf4cb834226aaa
SHA256

ce677290fb82a367ece17b7e4d5477a1cf62707865ebf01adaadb1a8d2fb7343
SHA512

1b4cf2f7a00f366e09e810b6f8a3429a941837a94d17e6e121605874eb5b2bd63f8055e6f488d99797ded8c25de920c41f8dff2d68950136b7a3191aabb73ac9
SSDEEP

6144:NtNcZam8TsSIKcCQbGARj+0Xn/onYflMfImvEXzQAUN9:N62TsS5y+0X/YjsXMb9

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  FengTan/风之星丰田客户分析系统/Function.asp
- Size
  
  16KB
- MD5
  
  4fa2499f11dc9892cd27f3a182ce2395
- SHA1
  
  69e12c956ac7fdacca292fa94792ce7f46370f1c
- SHA256
  
  914abbb030789b626f161c6e10269c99606c3cfa43ad156eddb3a3cada562c13
- SHA512
  
  323a5aa12f47ef4470537821ef43e9e14c66d72022e6276f48efdfb839d5e27dea658d0aee59393c261768002cfc3c9732a77d48fde3b2c9597e6d3452de6add
- SSDEEP
  
  384:1nlN+NncLv8dWC7dsdv7OCpqXs+R7dsdv7OCpqXsRwkQqRyeqqA:1XyncLv8dr7dsdv7OCpqXs07dsdv7OCm
Score

1^/10
behavioral1 behavioral2
- Target
  
  FengTan/风之星丰田客户分析系统/Inc/IE5.5+/ubbcode.asp
- Size
  
  9KB
- MD5
  
  10a4e6bc148e5246e92c94d08785b9dd
- SHA1
  
  4e2bddb3d762423a96519233ddae99ce800627b8
- SHA256
  
  1da5deb4b054aec05ce1b7a32c374236228b78079adcea8e5699d0078608da6c
- SHA512
  
  3283a6aecfeb763b916248e8a8de6ca25a9a0bf75042d50c74dd88152eef2a32646d9ead0f2bec01329fb61dd8823607138c4e48a7a6f86b8a71ca8a26ef72f8
- SSDEEP
  
  96:vKZet+t3H0gXzkUap/gGZU3LKvj24AZkHZcZRsN5Aicrnx4HSiMqm9aO:KHrjSp5MW7oZkHZcZeN5ABrx4HSnXaO
Score

1^/10
behavioral3 behavioral4
- Target
  
  FengTan/风之星丰田客户分析系统/Inc/checkcode.asp
- Size
  
  1KB
- MD5
  
  464c92453c91cbbb48c807f0d8f53b45
- SHA1
  
  2f223d47bb4c68f840773be6695618836ee17206
- SHA256
  
  6db5f45972da785aa1131079cbff325a34b0be45d41e6e24bebc55e90db8f42b
- SHA512
  
  88c93b46dc59032faf02d272dbc9dc6927beaf74d9237cb1c20fb853059ecced9ce48421249cf77fe11471cf0610090cd1559ebcaabdd03833acea3a49e5188a
Score

1^/10
behavioral5 behavioral6
- Target
  
  FengTan/风之星丰田客户分析系统/Inc/md5.asp
- Size
  
  11KB
- MD5
  
  40977e9d45e858e6f1cf48d89ae47c27
- SHA1
  
  50c3e552234397980239530c57120839a4cc3da5
- SHA256
  
  045a35dd70992ef2bcfc72834214c94902eaf17f5065816b96f0e6a7037ce951
- SHA512
  
  530e4875604b86a5a79ba4256045ea9cb2655e5136cf0a3d17ac4bbe757fb741c4f7789533a3e7cc8c7c250559eaaa833ca6f9e6af7708eed9aba4ef6eb83a5f
- SSDEEP
  
  192:fvioOa+9Y7D8MzYn4zVnt0fjj/+jGguhFYv0VjoVM4eaaYxkZD6U:OSFYOgFYvWjoVnF9xKDV
Score

1^/10
behavioral7 behavioral8
- Target
  
  FengTan/风之星丰田客户分析系统/Searchinfo1.asp
- Size
  
  5KB
- MD5
  
  a63e949674d362500e5dcebaff836378
- SHA1
  
  1d48171a17d28c0181a86b97e3044e356fb5f676
- SHA256
  
  7a4096531920d4f4c390284cba163d0d9e1942bb02aa894d551699231f6d9236
- SHA512
  
  d11ac478b3a71ad8bfc7f2e4920219f4a2b911661faca120a5f6f9ac70775f5bb200cba93b5e182fa1d97709c63ac6c900f7b31a197e9da81bdc5534636aec6d
- SSDEEP
  
  96:FraU+kQqLroYbN5TXHBUnmADa10EVgGzpapgpKpnpcpipfp0pNpuLIHZZyMVu/oc:FraU+ksYzDtVMyQg8
Score

1^/10
behavioral10 behavioral9
- Target
  
  FengTan/风之星丰田客户分析系统/Searchinfo2.asp
- Size
  
  5KB
- MD5
  
  91f4dbce3d99cc24179fc3bceaef88a3
- SHA1
  
  899ffc7745b8e09bba8ef9ce542e291d07bb6cb2
- SHA256
  
  00ae4bc570fdeee1a989833dff740fb37595639ac508e3d5993154c5666f37de
- SHA512
  
  aba7e4d3dde16a6a5b7c8a9ed5e6fd59a096673357eeaa3602243ddbdb5f1867cf239495f77116ab1f3c63622b264184d82484bc4ce462c72644263866c344d8
- SSDEEP
  
  96:lyPkQqLroYbN5TXHBYgimPaH/RggAzpapgpmpHqpkpX4pXKAp4pXbpXLnSH/ZUMA:lyPksYziq3VMyQg8
Score

1^/10
behavioral11 behavioral12
- Target
  
  FengTan/风之星丰田客户分析系统/Startup.asp
- Size
  
  3KB
- MD5
  
  70f563c7c620f5757afd3f81527934d1
- SHA1
  
  229058b10bf92068375ca697cab659146101ff4b
- SHA256
  
  dc0a4b807bde4775e50dc3cf829e4ae0f5da5c1f683bee4c992e31c29b20cd18
- SHA512
  
  d6fbd9149cfb2c79d5dbe2ad7f20d5ca67ce59c91bde97a60be5ea42034e0c25b4b7633367ef13135c8b10d78b502a3ed578b3d5fc3752731989d99a9f16cbff
Score

1^/10
behavioral13 behavioral14
- Target
  
  FengTan/风之星丰田客户分析系统/admin.asp
- Size
  
  871B
- MD5
  
  a47cceee7fd85c8793c1c973740b0f0e
- SHA1
  
  100c8888fb39fe82b31886e2a6e776944a0215f9
- SHA256
  
  dbb4ca5d203cdbe6e5b56202ca1f8529066f02532ad4696cb497913bcacce4a1
- SHA512
  
  270cd705bec9f536a2a36a280eb1942a9e96d16e1cb300f3735ad413fe371d8a192d2e88a6ac311bceecee521f1f0091cbffd7ceda86c9339565c8c81f2fddf4
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  FengTan/风之星丰田客户分析系统/bottom.asp
- Size
  
  2KB
- MD5
  
  98c9f206d906574fbe4e7e7d8a0cfa49
- SHA1
  
  2514969d3147b56520a98bd7c7f421abab391c14
- SHA256
  
  9c48fef005391a882bb819129ef9c3ea87290025c31dd5aea48f7cb20e08ee69
- SHA512
  
  3c0c64a41f63bb4189c50ef4421b515d81c820132fa5641d679e165201b646452ed66d7ca9d78449ddbdf8baabac246594a976de9cbb61d440d95c6f1cc57825
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  FengTan/风之星丰田客户分析系统/chklogin.asp
- Size
  
  2KB
- MD5
  
  271119c98aca68b42c60c9073ba5191d
- SHA1
  
  2d519e5d45f24ebc31f21b1e4a5d61101badbfba
- SHA256
  
  282991c8bde48f1d072787fecc8a95cd6c3e9618952c6e4a3dcbad66bedd8a41
- SHA512
  
  30766fffcc0b803191459e9a8596c795165892368ba8877d911d69b6ecf3ad3a24d156c2d1f282dd80f95a05432112c01b28f431672e09d16d2d8c8813fcb521
Score

1^/10
behavioral19 behavioral20
- Target
  
  FengTan/风之星丰田客户分析系统/client.asp
- Size
  
  5KB
- MD5
  
  7e73b4f6a83ebe8a139464ae9848d52c
- SHA1
  
  cc3d1bcd39238eef84d824e3328e64f82614f714
- SHA256
  
  dd04883c68a81648642bd3eea9f8ac42e9c4faa9aa6104f05dc98fbd9d9c7f1b
- SHA512
  
  d03d7c2fd0c80641d53708d62352bb8aade242fbd209af7642a1ce3366d32593acbe4d2ef19ff6cc987b87b4ca51ae825311c76a6719d9519da3315b06fd8c13
- SSDEEP
  
  96:3foHsbnhZuKZkWgiu7WxYsbN5TXHBUnmADa10EVgLqLWzpapgpKpnpcpipfp0pNf:3AHsOL5EqszUUVMyQgo
Score

1^/10
behavioral21 behavioral22
- Target
  
  FengTan/风之星丰田客户分析系统/client_save.asp
- Size
  
  1KB
- MD5
  
  935989a063b69e51e7b807d2b096b9a4
- SHA1
  
  c788be8f8e84a1ad2706ac3559594b8e3737368f
- SHA256
  
  e30bdf85e660c8573486426430997b23ecf56b35a6c4c5cb0bae9313f11f40c2
- SHA512
  
  0979ccbcccdaff0a1bbb0ce3b9caa1ee945da631970444438e47463a1f93f87a268c4d7807b093327c0b3fd221051c17449c8166e5297b9a6b17270beb586d1f
Score

3^/10
behavioral23 behavioral24
- Target
  
  FengTan/风之星丰田客户分析系统/distill.asp
- Size
  
  3KB
- MD5
  
  c2b22b212a45a9babb78dfe2861f4734
- SHA1
  
  f5531649dcb304fc6a1dba7c510199a883c5f250
- SHA256
  
  7c1da172e2fd2b86c7def71c0303d2984237310a7156058436745aec2a78078b
- SHA512
  
  da3264211fd0ed8e0ec5111f471ec7af088a9ec8635b9be6f2d7da986abedd48624a49db32a8e34ab242c418aa60693eb71ffe3c0723a24c697c22ab55f6830b
Score

3^/10
behavioral25 behavioral26
- Target
  
  FengTan/风之星丰田客户分析系统/editpass.asp
- Size
  
  763B
- MD5
  
  d1accb695ce244a786ff4d915b31f0d3
- SHA1
  
  62fa47632ef4e8785bcb851d490047e1d952cc26
- SHA256
  
  5fb671d4ae99f062d83c6f1d8c6042a3f8dd23587adae3acfe9bfa39b527120d
- SHA512
  
  16070900c162a280575935b4ad7ddb58033dee3c6189ed9d905dfc424bc821fcba7efd82e4d88913a8ea6d97a716e74e8f3f36d9fb09f745ccaefb4259a2e043
Score

1^/10
behavioral27 behavioral28
- Target
  
  FengTan/风之星丰田客户分析系统/exit.asp
- Size
  
  396B
- MD5
  
  4fdadcaa6f085c6e59ebb7e48faaeb17
- SHA1
  
  4e1b99e475c70b603c265161eae969fe9bc467a7
- SHA256
  
  b85035b5ba978eeafe0d39e94c405b6ead8e599d9d017efaf50efca25ff2429f
- SHA512
  
  fbf92c131c344458b92d5c8a8d50b052f17ac6d22cdd907e05e26a3c674e151d3e6fab9aeaa3c42aacf69e32aa3734cf6e625012eff756330fc6ecb31c165a61
Score

3^/10
behavioral29 behavioral30
- Target
  
  FengTan/风之星丰田客户分析系统/img/setday.js
- Size
  
  20KB
- MD5
  
  839a68adffd74ba0d2d166062b165584
- SHA1
  
  d3d0761b41e847d6a1c5cd2eca02c0d735f36089
- SHA256
  
  4ff04ec1b4fa14d0f2386a0760b083703643c06073a1003e973bd308cbc33075
- SHA512
  
  701ec856b6a795591e62e1bfeab66a98e51a31f5072b6f9215c9cab58076c89f8cfb7d521e02d207ec8a28bc46fc4b3e3bc7d7a2033bae4e99d8024e7fe474b5
- SSDEEP
  
  384:UkwRdrysuxe+mtzc9+Qw73SDJwyYk7xAUwxcQyvq:UV+Nxe+m9cC7sYVOq
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32