vjw0rm | 9b58b6d8da0b079a6514bf6614832ea98b35bfad7674f94387a417d17a6ba9c4 | Triage

Submit
Reports

Overview

overview

Static

static

ID9028739203.js

windows7_x64

ID9028739203.js

windows10_x64

Sharing

General

Target

ID9028739203.js
Size

29KB
Sample

210426-awl1gnwhsn
MD5

98ed66d9f5fa9369ce8023f1aca299f6
SHA1

ccaf5fb13f8b6f7b1215d59e9cd1a13efeeac627
SHA256

9b58b6d8da0b079a6514bf6614832ea98b35bfad7674f94387a417d17a6ba9c4
SHA512

0fe7ef9d3783a18f5567bdc70e0606deeebb31effbd90f47a2dfcd0e0762f71cb944e37d4a8d44b794d996edc7040830d7f89ae22e766c6894e1c74e84668b26

Score

10^/10

vjw0rm trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

ID9028739203.js

Resource

win7v20210410

vjw0rm trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ID9028739203.js

Resource

win10v20210410

vjw0rm trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ID9028739203.js
- Size
  
  29KB
- MD5
  
  98ed66d9f5fa9369ce8023f1aca299f6
- SHA1
  
  ccaf5fb13f8b6f7b1215d59e9cd1a13efeeac627
- SHA256
  
  9b58b6d8da0b079a6514bf6614832ea98b35bfad7674f94387a417d17a6ba9c4
- SHA512
  
  0fe7ef9d3783a18f5567bdc70e0606deeebb31effbd90f47a2dfcd0e0762f71cb944e37d4a8d44b794d996edc7040830d7f89ae22e766c6894e1c74e84668b26
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmtrojanworm

behavioral2

vjw0rmtrojanworm

© 2018-2024

Terms | Privacy