3d1e0ad113774a38925d0e4d26c4e03f91489598065ad65c69c9e284985e0d78 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Godnews.js
Size

1024KB
Sample

221125-xkqfksgb55
MD5

c0110366d42437cb7edffeeef4afa865
SHA1

0b7937b71b40d0dcf81151e85034117b197e1773
SHA256

3d1e0ad113774a38925d0e4d26c4e03f91489598065ad65c69c9e284985e0d78
SHA512

4fa4ad37df3270a921e03facecd3b26a8ba5f5933e98045140aa3bb3982b823c5d346d4723af5d2de8ea03b2d838574ca36eb44ea6bb30490154db641488bb2b
SSDEEP

24576:6FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFT:

Score

7^/10

Malware Config

Targets

- Target
  
  Godnews.js
- Size
  
  1024KB
- MD5
  
  c0110366d42437cb7edffeeef4afa865
- SHA1
  
  0b7937b71b40d0dcf81151e85034117b197e1773
- SHA256
  
  3d1e0ad113774a38925d0e4d26c4e03f91489598065ad65c69c9e284985e0d78
- SHA512
  
  4fa4ad37df3270a921e03facecd3b26a8ba5f5933e98045140aa3bb3982b823c5d346d4723af5d2de8ea03b2d838574ca36eb44ea6bb30490154db641488bb2b
- SSDEEP
  
  24576:6FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFT:
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2