Overview

overview

8

Static

static

??????????...??.jse

windows7_x64

8

??????????...??.jse

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1872a080e41bf4ed1f00782501b583d130740cd97329cd554765f4513a7c31d2

  • Size

    2KB

  • Sample

    220418-mv2lgscaej

  • MD5

    3b4d475b354b85827bb176c3eab5c31c

  • SHA1

    66718b96e9c0a0d10e0012f4877cd47879b685ed

  • SHA256

    1872a080e41bf4ed1f00782501b583d130740cd97329cd554765f4513a7c31d2

  • SHA512

    efc92f981aaf2fce5f64456ba6814b8886a36fa54baa7598b4370f855130323384948c348d307b58df33f6a06a32dcca829012c5a3771aafb7013e55f75924b9

Score
8/10

Malware Config

Targets

    • Target

      ?????????? ? ?????? ????? ???????? ?????-?????????.jse

    • Size

      5KB

    • MD5

      d330aad3bfd86656f6f3c9271ebefe27

    • SHA1

      442892ac4dc64348d009b8f7d1f8cb2d3522340b

    • SHA256

      1b89fbda3bb65e0f5c2f9aa178082d418393087f37f0a1cd3f68645eec4a834f

    • SHA512

      c869200fe3fcadeda670f78ab5ed327e7672d4b22b9ecdf6089c8aea9493b3f20e474f22a53a586cccdcc51cfe187dce08f38222bc6dc7621696175119bcdf9d

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks