General
-
Target
RTG5053.js
-
Size
13KB
-
Sample
220201-t7nzgshhf9
-
MD5
c3f4c6eedf215efce27679658048ac84
-
SHA1
d60cddccf1b35fe73caaf45142e8432cea801e4b
-
SHA256
4554df2e5e0e350cc30bd413e5ec17a0e7c91f2b2e9f4e504d11494a2e23e2cf
-
SHA512
3d7dcf7cb5794c4897c425199dc3d7d81e085ab30fff6e5b784caff523c8c6e8b1f4d1220390953d3aba82d7f68f3032bbdcd37a3dcc6dab02df16860e512044
Static task
static1
Behavioral task
behavioral1
Sample
RTG5053.js
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
RTG5053.js
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
RTG5053.js
-
Size
13KB
-
MD5
c3f4c6eedf215efce27679658048ac84
-
SHA1
d60cddccf1b35fe73caaf45142e8432cea801e4b
-
SHA256
4554df2e5e0e350cc30bd413e5ec17a0e7c91f2b2e9f4e504d11494a2e23e2cf
-
SHA512
3d7dcf7cb5794c4897c425199dc3d7d81e085ab30fff6e5b784caff523c8c6e8b1f4d1220390953d3aba82d7f68f3032bbdcd37a3dcc6dab02df16860e512044
Score10/10-
Blocklisted process makes network request
-
Drops startup file
-
Adds Run key to start application
-