vjw0rm | 4102440807529ce4a589a431070588adb2c6fc9df95f8a4f3323b0e89b3a42f8 | Triage

Submit
Reports

Overview

overview

Static

static

Colis_FR-0...201.js

windows7_x64

Colis_FR-0...201.js

windows10_x64

Sharing

General

Target

Colis_FR-02155J12201.js
Size

959KB
Sample

210604-9d1hn39nvx
MD5

c0c8a352c2910ffc568267e0ebdbeb4b
SHA1

bf32d068e402d356fb9a23606bcf8b6fbbf3684e
SHA256

4102440807529ce4a589a431070588adb2c6fc9df95f8a4f3323b0e89b3a42f8
SHA512

79e3ecee156c81d9dc887e932dc6e4d20416105112428673b082fa3691f5ea0d75242e3c47abff79df208a7aa13435174269f4b979b38d56af2ab48e78c07728

Score

10^/10

vjw0rm trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

Colis_FR-02155J12201.js

Resource

win7v20210408

vjw0rm trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Colis_FR-02155J12201.js

Resource

win10v20210408

vjw0rm trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Colis_FR-02155J12201.js
- Size
  
  959KB
- MD5
  
  c0c8a352c2910ffc568267e0ebdbeb4b
- SHA1
  
  bf32d068e402d356fb9a23606bcf8b6fbbf3684e
- SHA256
  
  4102440807529ce4a589a431070588adb2c6fc9df95f8a4f3323b0e89b3a42f8
- SHA512
  
  79e3ecee156c81d9dc887e932dc6e4d20416105112428673b082fa3691f5ea0d75242e3c47abff79df208a7aa13435174269f4b979b38d56af2ab48e78c07728
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmtrojanworm

behavioral2

vjw0rmtrojanworm

© 2018-2024

Terms | Privacy