General
-
Target
VBR006JSANQW.js
-
Size
13KB
-
Sample
220208-btjthabfe6
-
MD5
8eecccbb75ba5366b1b3e875ed41af43
-
SHA1
ac4641ee09ca2935696d3b587e9e05ec92618fb9
-
SHA256
bbd977223b6cb63ad932d09bbf5ee2ba813318ced7b8cc20f18fbb51e22bc44e
-
SHA512
771b39b2b255cf4db1c87e969c4c9f23f5dc3698b45c94b09dfb19cfaaa46bbb529ffd8c0601a63b5da2adbcd382d80365544692882c5ea3ebdb6e35a3dacddc
Static task
static1
Behavioral task
behavioral1
Sample
VBR006JSANQW.js
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
VBR006JSANQW.js
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
VBR006JSANQW.js
-
Size
13KB
-
MD5
8eecccbb75ba5366b1b3e875ed41af43
-
SHA1
ac4641ee09ca2935696d3b587e9e05ec92618fb9
-
SHA256
bbd977223b6cb63ad932d09bbf5ee2ba813318ced7b8cc20f18fbb51e22bc44e
-
SHA512
771b39b2b255cf4db1c87e969c4c9f23f5dc3698b45c94b09dfb19cfaaa46bbb529ffd8c0601a63b5da2adbcd382d80365544692882c5ea3ebdb6e35a3dacddc
Score10/10-
Blocklisted process makes network request
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Adds Run key to start application
-