bab8fd83efafed2f3e5fdffb4c1c2736ae0ed56e18540aa725b74743741646e8 | Triage

Sharing

General

Target

VelocityV2.7z
Size

144.8MB
Sample

250328-k96smswl19
MD5

77ead557859f506345e4e1c7ecb636e7
SHA1

6046f7c8e81c7d0fa7d66f5496420bf5cb911e96
SHA256

bab8fd83efafed2f3e5fdffb4c1c2736ae0ed56e18540aa725b74743741646e8
SHA512

2081e990145b059005e2643344dc9479ac440f82d4d5672315d2df2a44d97e94d9d229433bab06506e9d9eb229b0cb6834f8a9117873e0a9797b3b5ea9fa4adb
SSDEEP

3145728:6OWJe3maZYAFWOTKhUpYWaRTXDFglwHn31wiTwr913AczYyxo:L93myYK+SpYWaBpgluK339fxo

Score

3^/10

execution

Malware Config

Targets

- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-apache_conf.js
- Size
  
  13KB
- MD5
  
  101447858061e58943416475a64afc33
- SHA1
  
  d9d1cf6c04f94e7b8c32f3b73a6b723ec8cabce0
- SHA256
  
  926b0e19fc2519033cd7c46fa7f102ce9fd69178c8cae269997a881992064b0e
- SHA512
  
  d1ad347f9cc04eb5d4aa100fdfee909ac02c7890f98ac6e26f97a2c09095157bd50cab8fdb29d45af1db9c9f8c7240bf302a59a024cea433cd9b92e28360b379
- SSDEEP
  
  384:MgwfgRGOquhRdnpHw7K/ruBiuO5ukw3x+FE2w7:8m1uB45n/y2S
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-apex.js
- Size
  
  8KB
- MD5
  
  ee742017ec781b6913821d4bd600db28
- SHA1
  
  2509b033816e813d06a7b287969023964a4cfd17
- SHA256
  
  7cc53c158e0a322e4d417c280e1884badce2401b0b56ffe860257ab367045266
- SHA512
  
  e4f8833f61c6bf2f335616a6f83662857a6da9f212b7134d5c4ace846e1c3e3e783ee203344b1ef4ef403c05491c64c1795a49a997e9539fa7de77c90fca864b
- SSDEEP
  
  192:uSLvp1XNp/fBZNeFe7HGuLAyEVWDxh4RTCa:uYh1r3BZx3xRxh4R7
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-applescript.js
- Size
  
  5KB
- MD5
  
  08a8cce831a81e31f9089196656a1bf2
- SHA1
  
  c8c31d1efa4c2a04d306e32bf52d0fb26b99106f
- SHA256
  
  204622db5bb649f66b3a5a1709162535384e4896c9c8200ec83eba9cf9c382ac
- SHA512
  
  cb750d158b10e31aecaf8af9e96d89b61f7d5910057a40f8007cd629ab66adc0d8f7b94547fc36563f9cd6b5bf27104941161431e26ea4dabd76c6f68a2de8e1
- SSDEEP
  
  96:ODdx1zqixObA1HVJ6zDX9zmldpHG2C4e4xAyEVxivTFMZIKTCa:U/qixOA1HVAzDX9zml7HGuLAyEV6TFE3
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-aql.js
- Size
  
  3KB
- MD5
  
  fd1a3b43c7540c8c8905d7eea012d741
- SHA1
  
  58639d55018c9dac68d83b5b3704b898281da7b0
- SHA256
  
  0b871d032247fc252c24927bacaf97888194eb160b22484a9ce8b322e312108d
- SHA512
  
  990e7631fe39bc4a5fd382b24184044dc91c8eaeaef250af4a67a468ea67fbdc36f84337ba61af75f2099dc50cdb584f79dce3a9359942add7bb0f18b3b9a4fd
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-asciidoc.js
- Size
  
  8KB
- MD5
  
  8373f2944e9da5dda7661fba6a7f0dc5
- SHA1
  
  17bde860fdb4c74cabda259d84c4a7fa3759ade5
- SHA256
  
  5b744d46681af8fc4701377b3d84dc68bcc259c80e8df50330886a712010da5f
- SHA512
  
  a727ecf9cbdab1970cb99ee107159a4ed13b347f7a07b374430a014bee9521e47f8a513112612b3b43cf5b7f68b22b6f18eb072cfd39005a11b7f4cce7db4e28
- SSDEEP
  
  96:Z2DTaqY8tSOgMnO9NuXhHWSCe0rnbB735zHLYATNKABn0Mz35YTCa:Iaq9SOgB9AXi95HYSAK0gpYTCa
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-asl.js
- Size
  
  8KB
- MD5
  
  51e0b04892baa102eff5e470b918769c
- SHA1
  
  cea96af3df88c406b68d69ece4362583687f34be
- SHA256
  
  5365b3f8f29cf3537c9e517467d30c5977059401ce9c47e9edc03c4647ff995b
- SHA512
  
  b013763d5b2b47af47912ae2515d93a764e49682b48612b6872484a41bd4cbe26a50da8127c401fc1aa906a8ec65491b8476c338269c21741e68d3e2105c38f4
- SSDEEP
  
  192:u84yvD4rit9LgvHcKo/TMmTK6vitjo4Dv1zGzGEXTX7HGuLAyEVo/FXzTCa:uJyb4rcMXNjo4DNKSEXTX3xnFXz7
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-assembly_x86.js
- Size
  
  9KB
- MD5
  
  1a784aeea47abf27999d46e4489f973f
- SHA1
  
  9bf7633c2c5a58aaa49f5b048a1d80c3016f266e
- SHA256
  
  368e67ed0e83f0544e660c6ab28ecc356d506f58c8290d49c182fa583480e975
- SHA512
  
  8366b7a857d396c5a7fd5dc2c458919b02f1f2ebb7a61003b0e31c9b2f2c26b5ee78aaa7ef52478bbd69e780014f234306a2eb6738483f73f1439766c8b0fa9f
- SSDEEP
  
  192:NwD7WZYvdRCmTVHwYdBuQasw8rgD5tvgkVXeuj7uHhWyuZSNkjTrXEYGTCa:N4qZ6+mTiYdB0sw8652Hh4ZMUTrXEYG7
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-autohotkey.js
- Size
  
  62KB
- MD5
  
  902febbf3a9a4045673eec5d0c0e8891
- SHA1
  
  34bff2d658f81b33360153023561175eba48bed3
- SHA256
  
  0057b52d2e742b5647486b80c620111fe00d6b1145847a86ef91f63e2ed9b523
- SHA512
  
  dde1de6d2c4513777b6df15207d503875049e8b843467398eb798d2d851156f4c79170ecbddf9fb04d228f74ba82ff757c0754378d6d0f604a52916e6aed9717
- SSDEEP
  
  1536:9JFRrFWvrlP8nO7b1lu+SwxCZv0adi1GRf9oS/IIFt3O5/u:9JFRrkvVx1AnF7QIFt3Oo
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-batchfile.js
- Size
  
  5KB
- MD5
  
  c7d3041669874ef8ad71f336ae87e32a
- SHA1
  
  fc06ff5fa651b5930b18ccff6ac9cbeeb655a138
- SHA256
  
  5b8c17801799408eefbd46861c321fcc38aaf863896a68028f6b61df6ceaf136
- SHA512
  
  f7fd6a11676e2c2c99842cbd74f2ee9d8890f763a894378021e422b716ac7a68bc4f68baa3d1c381cfb6979da7958866c700675d281efa16df4cc3e90d268db9
- SSDEEP
  
  96:bDYKGlhY56ohWxRnydpHG2C4e4xAyEVxiBPFMZpVTCa:AL/Y56oh+Rny7HGuLAyEVIPFEpVTCa
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-c9search.js
- Size
  
  4KB
- MD5
  
  d9e505c7cbb934f632a1da3dd274d7fc
- SHA1
  
  546cbf8029d60d8fee2cdbc193755ce28f8a622d
- SHA256
  
  a0e03c9827cda75ec00d24b0710397787c7c71cdbaffbbfcc91b1b033b47da44
- SHA512
  
  2eeb5b768982b9c1bbbeff3d818a9186f3c82445c9e29d4ec844105d890a097c0ec72d1a887aa37e580a54074971e78f839d5e45bd2359219bffb94e49fdf014
- SSDEEP
  
  96:B1MmoHzb5DowW7nTxFfaNe2Y1cRdijgXMzCTRqWxdOulTCa:k3bp4L0rYiQjgX8CTHrOulTCa
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-c_cpp.js
- Size
  
  11KB
- MD5
  
  9d54ba6faae5a91539b0454e303cc9ba
- SHA1
  
  01375a6fc675b863e2ec25410142fa737e7bf8d2
- SHA256
  
  6852ef4a1c3509fbdcfc8a1d35f233d8c9c5e86de706825500a3243d60cbb1be
- SHA512
  
  690fbf05d3626d417ffecc7fae42465330d84213889e7a2cbce54639ba36b9dd64c23e66c054ce37a131b6127d73e5fde3745034da960aca70d4dc7816145742
- SSDEEP
  
  192:uGcKlPIw/zsU3sUBqPmhOmIIum3QNEjgs9LNFaCk1zGzGnzkTpmYM7HGuLAyEVUe:ulN9mhnum4EjgsR+COKSnITop3x7qVlb
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-cirru.js
- Size
  
  3KB
- MD5
  
  f1652c3e7ea4e0fbf49af070421e8ad6
- SHA1
  
  7cd1a7d1d673e3a18eb89d6eb4734cf29644b0e9
- SHA256
  
  aacb403f94b85a6a7c3e342f15428f960fe3cddd82c5dd42ed42a6f67c6b9637
- SHA512
  
  1f88b7c76e051a56020529ba4de8e395e71c281e10af855db098850155a57bc635a99e51c4b4dca3e59c049c61db6b663226e0e09296bd98b87fe98afc75cb44
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-clojure.js
- Size
  
  8KB
- MD5
  
  58215a333255b67dd31e2880b094251e
- SHA1
  
  b6a4da533cc2d0ef6372f5fde83aa5b6e42e62a6
- SHA256
  
  a10465505a4fdea367af7b96808a0f859e0a20f97927ddb5045a57590c4aebe6
- SHA512
  
  9e74cdfcef02182dfd780f0f5323307f66f70306d67c4976c0a0c87a9897c7a2b7542c904ef6dd63d632cfbf898385bbbb7136208e74270b5cac09bef56ea2e0
- SSDEEP
  
  192:Y7eV3GZC3a66IBjBd/J0Y10E3nZqWYPHxy/IQJvTCa:ceV2SH/DL3nZqW2Hxy/IQJv7
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-cobol.js
- Size
  
  2KB
- MD5
  
  0411d98c44936e186ddf191991425e79
- SHA1
  
  563b4a694c82df1dc1aebe4a608033c736aceb36
- SHA256
  
  e16ae83fa951289f0c4174a75189c7540eb5ffae10f530187ff9ef6c103589de
- SHA512
  
  a120d648cc61e5b0e79901502759dd97718a6f4bde6eec703b5a513c1ef3b08dadfeba933d6b9c77b2aeb14b7ad9e3fba409e751a2efbba167fdb1ebc64571ec
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-coffee.js
- Size
  
  7KB
- MD5
  
  1972ee3a1d76ed24aa02ea61b6d51a15
- SHA1
  
  db4c992aa6f17c62bebf632ec410e631c988ff5c
- SHA256
  
  29f368fa7e9f771f7e6d3e216ecca9fb69f85c3a7c81122a6057438d544794d4
- SHA512
  
  5fb2e0b377843e4ab6dc183870236acb21eb2318b06e40d1d775df046d25fbaf6656760add40426512b87e92e0daa897583a552214790fbdb9b525b528390dd0
- SSDEEP
  
  192:3AXrCQAgf5F+xt+GMeSYdNkjTQWipHjZTCa:Q7Rpf5gxYGtSOUTQWiRjZ7
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  VelocityV2/Bin/ace-editor/src-min-noconflict/mode-coldfusion.js
- Size
  
  61KB
- MD5
  
  0347a9473846dfd0b2816cde1e41123f
- SHA1
  
  ae98ec3209fabe3ee7359a3a770f2f84a8da32a7
- SHA256
  
  fa9dfabf46a04ff79f95a36c50492c2c0f09cb36019bf14b37f0dc4a6eb41060
- SHA512
  
  8af3fe2538efe57bf9a163eb60cabeb2f7f80981557251f5a418fba6835bc4b456037f1bbabe18be0665837bb58ab7c990f001e60d429488d327f791380f2ee0
- SSDEEP
  
  1536:uZypT8yVZXKVZBny7p6I8bpkJoD3TAbTLf49NBfZweMghPsoHnvmomvFfbsXqvH/:uUpr2tkJqMAZweMwk/
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32