vjw0rm | 47b0e73fe1891556df722ea58eb014682571cf1bc967fe4b60be277b17f20311 | Triage

Submit
Reports

Overview

overview

Static

static

ID_Colis_F...901.js

windows7_x64

ID_Colis_F...901.js

windows10_x64

Sharing

General

Target

ID_Colis_FR99728920J0901.js
Size

644KB
Sample

210706-mk8zn4vl2n
MD5

a55cca221a51796ad86291249e15527c
SHA1

13ea38af653bd19db0e55fc1056699ab1f466576
SHA256

47b0e73fe1891556df722ea58eb014682571cf1bc967fe4b60be277b17f20311
SHA512

1472fa0eff33ff1be64dbcc43fd4729e92477189a283d3a489737c68b1801b0b1faa6e62d1892bce600439c94d382adccb4ae04f92173efae70c750a7e24afbd

Score

10^/10

vjw0rm trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

ID_Colis_FR99728920J0901.js

Resource

win7v20210410

vjw0rm trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ID_Colis_FR99728920J0901.js

Resource

win10v20210410

vjw0rm trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ID_Colis_FR99728920J0901.js
- Size
  
  644KB
- MD5
  
  a55cca221a51796ad86291249e15527c
- SHA1
  
  13ea38af653bd19db0e55fc1056699ab1f466576
- SHA256
  
  47b0e73fe1891556df722ea58eb014682571cf1bc967fe4b60be277b17f20311
- SHA512
  
  1472fa0eff33ff1be64dbcc43fd4729e92477189a283d3a489737c68b1801b0b1faa6e62d1892bce600439c94d382adccb4ae04f92173efae70c750a7e24afbd
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmtrojanworm

behavioral2

vjw0rmtrojanworm

© 2018-2024

Terms | Privacy