General
-
Target
Detalles Del Comparendo Por La CTE.js
-
Size
658KB
-
Sample
210226-pz9bka33ke
-
MD5
d6e145e5a98669b41b35b1ecda1d96a6
-
SHA1
bef627ba2e04899013ad2732d26d262453477c3f
-
SHA256
76f0269fadaf8730fa587c38fc72fda6ecdb1949894161dc6fdc69b5bba05ca9
-
SHA512
9506af2f6dc2ff9e6c50b5658bcdb27ccea5184bed8eac37005db20908dd332e006e78ffa2d4cd99acb3d3e59aa326b04f2cf28f39f1074edccd0a99b79f91d7
Static task
static1
Behavioral task
behavioral1
Sample
Detalles Del Comparendo Por La CTE.js
Resource
win7v20201028
Behavioral task
behavioral2
Sample
Detalles Del Comparendo Por La CTE.js
Resource
win10v20201028
Malware Config
Targets
-
-
Target
Detalles Del Comparendo Por La CTE.js
-
Size
658KB
-
MD5
d6e145e5a98669b41b35b1ecda1d96a6
-
SHA1
bef627ba2e04899013ad2732d26d262453477c3f
-
SHA256
76f0269fadaf8730fa587c38fc72fda6ecdb1949894161dc6fdc69b5bba05ca9
-
SHA512
9506af2f6dc2ff9e6c50b5658bcdb27ccea5184bed8eac37005db20908dd332e006e78ffa2d4cd99acb3d3e59aa326b04f2cf28f39f1074edccd0a99b79f91d7
Score10/10-
Blocklisted process makes network request
-
Drops startup file
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-