Overview

overview

10

Static

static

Our New Or...TXT.js

windows7_x64

10

Our New Or...TXT.js

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Our New Order AUG 18 2021 at 2.50_PVV440_TXT.js

  • Size

    8KB

  • Sample

    210818-5x4ky9sl7j

  • MD5

    a7deb33bf9c672522776d5428d18bd6f

  • SHA1

    c286414e8493d4684ed9ce9f8de8b4fa50e0ba5a

  • SHA256

    edb6e160869e2a4e91ea436cc66cd7f1c239d09c3459e76eb163e1450fc4e2e7

  • SHA512

    0d5443fd1d1ea84a01a7bdefd182d120906220a5f64446fbe05db4bb3e02a9f7dbc3e2ef7f6124514ba7744609f6434c56be9d213a39299192cb6a6203dfcc1a

Score
10/10
vjw0rmtrojanworm

Malware Config

Targets

    • Target

      Our New Order AUG 18 2021 at 2.50_PVV440_TXT.js

    • Size

      8KB

    • MD5

      a7deb33bf9c672522776d5428d18bd6f

    • SHA1

      c286414e8493d4684ed9ce9f8de8b4fa50e0ba5a

    • SHA256

      edb6e160869e2a4e91ea436cc66cd7f1c239d09c3459e76eb163e1450fc4e2e7

    • SHA512

      0d5443fd1d1ea84a01a7bdefd182d120906220a5f64446fbe05db4bb3e02a9f7dbc3e2ef7f6124514ba7744609f6434c56be9d213a39299192cb6a6203dfcc1a

    Score
    10/10
    vjw0rmtrojanworm

    • Vjw0rm

      Vjw0rm is a remote access trojan written in JavaScript.

      trojanwormvjw0rm

    • Blocklisted process makes network request

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks