vjw0rm | eb36e0d72eeabd0731238af52c8f2175ff809091c117f83e0945928550c93850 | Triage

Sharing

General

Target

ReceiptTT54657534.js
Size

169KB
Sample

220228-sjtz6afhcj
MD5

6923fdb0993ace8c1ee750f0b3810a1c
SHA1

9b8dc652eb39737c6bfdb505dbbf8617c36efadf
SHA256

eb36e0d72eeabd0731238af52c8f2175ff809091c117f83e0945928550c93850
SHA512

10a9dbcf6d5b598a324019304aff8d86765297a94c21db71789dacdd015737322173aa9e9b3eb612d22ff5dc7b897ffefe180ab5fc37cb095a1cf046fe676aec

Score

10^/10

vjw0rm trojan worm

Malware Config

Targets

- Target
  
  ReceiptTT54657534.js
- Size
  
  169KB
- MD5
  
  6923fdb0993ace8c1ee750f0b3810a1c
- SHA1
  
  9b8dc652eb39737c6bfdb505dbbf8617c36efadf
- SHA256
  
  eb36e0d72eeabd0731238af52c8f2175ff809091c117f83e0945928550c93850
- SHA512
  
  10a9dbcf6d5b598a324019304aff8d86765297a94c21db71789dacdd015737322173aa9e9b3eb612d22ff5dc7b897ffefe180ab5fc37cb095a1cf046fe676aec
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vjw0rmtrojanworm

behavioral2

vjw0rmtrojanworm