vjw0rm | 134532d57ccbdd91e6db21e18c2eb08bfb7f23a1495858bf7b37d024ee4b4f29 | Triage

Submit
Reports

Overview

overview

Static

static

P0-456784567.js

windows7_x64

1

P0-456784567.js

windows10-2004_x64

Sharing

General

Target

134532d57ccbdd91e6db21e18c2eb08bfb7f23a1495858bf7b37d024ee4b4f29
Size

27KB
Sample

220208-bw62tabfen
MD5

89752e1dd5d5649c53cee540ffd6ce0e
SHA1

c5ed9be5a4e4d07e657d95aa58524804a935096e
SHA256

134532d57ccbdd91e6db21e18c2eb08bfb7f23a1495858bf7b37d024ee4b4f29
SHA512

475781797bc19602cdc56e82971abd8e77b0c870d6226e66d4ff33c604441446770bd0f3f8b7856beb039e5e058518a2412bffae6bee376b864b14eafc97dd5a

Score

10^/10

vjw0rm trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

P0-456784567.js

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

P0-456784567.js

Resource

win10v2004-en-20220113

vjw0rm trojan worm

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  P0-456784567.js
- Size
  
  25KB
- MD5
  
  b689d2615736f95441ab7e4e8c1baf08
- SHA1
  
  e2c51a0175f4c5f67c786afcc44ee6248baee4b8
- SHA256
  
  216fa263eef7ad60df2e1825f2406f2702bc4351382750f9e05db9327c9b3fec
- SHA512
  
  483901d604170d1cc04b87ed0aa63a76f582a01759f6b2a406b74d8751a7cd1befd0159bb14c17530c18bcd579ae71b25fa2506fe064cb99c46f1b6f46b5a7f2
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

vjw0rmtrojanworm

© 2018-2024

Terms | Privacy