vjw0rm | 9997abf0f4a9633279822067079293dc8abe470435878191089738e733312d5a | Triage

Submit
Reports

Overview

overview

Static

static

Purchase O... Te.js

windows7_x64

Purchase O... Te.js

windows10_x64

Sharing

General

Target

Purchase Orderp31010202004011431 & General Te.js
Size

205KB
Sample

210906-1z3k8sbeb2
MD5

84f45bc4a251657855cb82cccf1db237
SHA1

b1a2fe4cd2594f69c3051aac66d19b80352c7307
SHA256

9997abf0f4a9633279822067079293dc8abe470435878191089738e733312d5a
SHA512

433d92f84b6b9b63712286b4e39a1201a4c19cb187ded7615fc16dc343ac2867160e82cc1c03beed9208810aea317c72e8a94e6ed2f6ee80143980b172b5144b

Score

10^/10

vjw0rm persistence trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

Purchase Orderp31010202004011431 & General Te.js

Resource

win7-en

vjw0rm persistence trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Purchase Orderp31010202004011431 & General Te.js

Resource

win10-en

vjw0rm persistence trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Purchase Orderp31010202004011431 & General Te.js
- Size
  
  205KB
- MD5
  
  84f45bc4a251657855cb82cccf1db237
- SHA1
  
  b1a2fe4cd2594f69c3051aac66d19b80352c7307
- SHA256
  
  9997abf0f4a9633279822067079293dc8abe470435878191089738e733312d5a
- SHA512
  
  433d92f84b6b9b63712286b4e39a1201a4c19cb187ded7615fc16dc343ac2867160e82cc1c03beed9208810aea317c72e8a94e6ed2f6ee80143980b172b5144b
Score

10^/10

vjw0rm persistence trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmpersistencetrojanworm

behavioral2

vjw0rmpersistencetrojanworm

© 2018-2024

Terms | Privacy