vjw0rm | ce199d986d0d04279edd245f3a0fe115c7c680a214d73feed8a8451b7b7feb94 | Triage

Submit
Reports

Overview

overview

Static

static

Invoice5697484.js

windows7_x64

Invoice5697484.js

windows10_x64

Sharing

General

Target

Invoice5697484.js
Size

200KB
Sample

210829-lqyk6476sj
MD5

f8f5bed73850632ff591989c5b88f9ee
SHA1

ce9066586bf44f0e77243ebdd6d2ce109cf7bd7a
SHA256

ce199d986d0d04279edd245f3a0fe115c7c680a214d73feed8a8451b7b7feb94
SHA512

72be43f9ce219a02fc9ee7395867e91f9b175fffa3cf6c69800d5a8ab3e7617bf22e56fa5d1506bfc5b81d303f86c4be278debaad472e7a7bd41e10a0b31a9a9

Score

10^/10

vjw0rm persistence trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

Invoice5697484.js

Resource

win7v20210408

vjw0rm persistence trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Invoice5697484.js

Resource

win10v20210408

vjw0rm persistence trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Invoice5697484.js
- Size
  
  200KB
- MD5
  
  f8f5bed73850632ff591989c5b88f9ee
- SHA1
  
  ce9066586bf44f0e77243ebdd6d2ce109cf7bd7a
- SHA256
  
  ce199d986d0d04279edd245f3a0fe115c7c680a214d73feed8a8451b7b7feb94
- SHA512
  
  72be43f9ce219a02fc9ee7395867e91f9b175fffa3cf6c69800d5a8ab3e7617bf22e56fa5d1506bfc5b81d303f86c4be278debaad472e7a7bd41e10a0b31a9a9
Score

10^/10

vjw0rm persistence trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmpersistencetrojanworm

behavioral2

vjw0rmpersistencetrojanworm

© 2018-2024

Terms | Privacy