General
-
Target
order_eReceipt.js
-
Size
330KB
-
Sample
220123-v3p7esgce8
-
MD5
215a296162bb36ba2f5e9a5b61f34d56
-
SHA1
fa587c88d78feba711d92098e1fca5ba1daf93df
-
SHA256
51d6c18b9392fd882ad22175c3a90761e7386279c75e8f2ccd33bff329757aa2
-
SHA512
3991adaf9f7b6b1efcd75d98954b80ca31c9a6759ae78f8ebb8fcaae049b656dea4c861f6e58a36bb1e4ac24f15010f9cb9c4523160bbea43b241c5deb57defb
Static task
static1
Behavioral task
behavioral1
Sample
order_eReceipt.js
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
order_eReceipt.js
Resource
win10-en-20211208
Malware Config
Extracted
vjw0rm
http://zeegod.duckdns.org:9998
Targets
-
-
Target
order_eReceipt.js
-
Size
330KB
-
MD5
215a296162bb36ba2f5e9a5b61f34d56
-
SHA1
fa587c88d78feba711d92098e1fca5ba1daf93df
-
SHA256
51d6c18b9392fd882ad22175c3a90761e7386279c75e8f2ccd33bff329757aa2
-
SHA512
3991adaf9f7b6b1efcd75d98954b80ca31c9a6759ae78f8ebb8fcaae049b656dea4c861f6e58a36bb1e4ac24f15010f9cb9c4523160bbea43b241c5deb57defb
Score10/10-
Blocklisted process makes network request
-
Drops startup file
-
Adds Run key to start application
-