Overview

overview

8

Static

static

Windows/CS...019.js

windows7-x64

8

Windows/CS...019.js

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8fb1e9ef-7171-4021-bec9-7d3a758e6193.zip

  • Size

    3KB

  • Sample

    220901-qfz1wseahk

  • MD5

    6cf5c52cae351efeccbcd3204d709ba5

  • SHA1

    0580584fc401e088760658474fd7d0b3cee25ace

  • SHA256

    21c32ce2f1225149b7c2c84392fd5408eae8431bfa4e3692ab35e49c42c74d98

  • SHA512

    a39ea7f79993747073c01792666701891482cee58fbd88407a83707dc94817fcb1e24715b0464935563f25730bafc2f42dad6701575707177a6b363b2de54dd1

Score
8/10

Malware Config

Targets

    • Target

      Windows/CSC/v2.0.6/namespace/emea.ajgco.com/emeadata/PVS_UserData/mjlong/Downloads/36556907235_Apr_10_2019.js

    • Size

      3KB

    • MD5

      5c89926e42de10e2cc945b05101cf37d

    • SHA1

      4fafb12318522ee04099bc1adcaf911b2441e41f

    • SHA256

      fded1345d0108bf6da569dbb8b00e143b393e89c87cb201965cd1da0631ad4a8

    • SHA512

      9680591dc757ca47287c94c1780e6cee0ff8020d80e8b02667c62c608176611275dc8da586bc82ef75d7ee2028bde2f95a54b63d960004a216611107742bf641

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks