Overview

overview

8

Static

static

d5c09a6fff...3f2.js

windows7-x64

8

d5c09a6fff...3f2.js

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d5c09a6fff4dee7dee7f302c1d4d586ba6bc83f2.js

  • Size

    27.3MB

  • Sample

    221014-msptxabgb2

  • MD5

    8b274243a5179028388a2c17c75afb9f

  • SHA1

    d5c09a6fff4dee7dee7f302c1d4d586ba6bc83f2

  • SHA256

    20eff877aeff0afaa8a5d29fe272bdd61e49779b9e308c4a202ad868a901a5cd

  • SHA512

    6848fe1763e2ec535b05374687cce02eeca59de0de21cbf1501defbb100ebe2bfaca68f6f75f4d34b8dbf1cda776b077096f550ca85a97586e311ab66e56e2af

  • SSDEEP

    49152:i0ivhMr3KWDux3B2PfsN7B0eP3GBxGwJzMvY+DHEAh7BeE3bt3FK6/Zas9gthH/t:X

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      d5c09a6fff4dee7dee7f302c1d4d586ba6bc83f2.js

    • Size

      27.3MB

    • MD5

      8b274243a5179028388a2c17c75afb9f

    • SHA1

      d5c09a6fff4dee7dee7f302c1d4d586ba6bc83f2

    • SHA256

      20eff877aeff0afaa8a5d29fe272bdd61e49779b9e308c4a202ad868a901a5cd

    • SHA512

      6848fe1763e2ec535b05374687cce02eeca59de0de21cbf1501defbb100ebe2bfaca68f6f75f4d34b8dbf1cda776b077096f550ca85a97586e311ab66e56e2af

    • SSDEEP

      49152:i0ivhMr3KWDux3B2PfsN7B0eP3GBxGwJzMvY+DHEAh7BeE3bt3FK6/Zas9gthH/t:X

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks