740cfea615830a7aea63a90b732e95c09babefc43a2859ec210a47c08e8ea709 | Triage

Sharing

General

Target

1b15567f27fb19b792ed7e8fb679ab2372100114
Size

24KB
Sample

230114-jfprlagc6t
MD5

6370485d133e20710332aaffd9ea257e
SHA1

1b15567f27fb19b792ed7e8fb679ab2372100114
SHA256

740cfea615830a7aea63a90b732e95c09babefc43a2859ec210a47c08e8ea709
SHA512

475f58cf82ead25dbb6a9bb87b21b57dbf06a6aafd895f5445e3681c4442c4af356da47d4456226b4af70c8370a7f29836f503ce3a180ccb77bea2ae1e55deed
SSDEEP

384:dz1V7wlnY2ydTDqA8TeKf9Vf7mz0RRuH6OEvhYs3JlCfY6QvoWdQdUUTe37UU7w:8gTDqtT7nf7mz0OHRsaxrQvoWoUx0

Score

7^/10

Malware Config

Targets

- Target
  
  water corporation enterprise agreement 2018 wa 15722.js
- Size
  
  62KB
- MD5
  
  fbbd2ab87eb076d202e6bd929535c609
- SHA1
  
  b3627d701873263cf9a247e93dcbe5684ce65951
- SHA256
  
  d64d9cb448ff7dfea1e641471beae99893637de21f7801b2b45b1495b90b3088
- SHA512
  
  d7498b9ea9dd456ac49c074278a13257b74754ac074dbf49538e1177f8b864264a5872e0b948a3ad5578a39a0ee4cde99878e95c3c3e20ada2d6067982f36213
- SSDEEP
  
  768:v2ghJ5gba4sC/1a7Wuj2MgJlRhQMtUpoZEFNA/Ycik0aBZyxvDvl:/Aa4sFNK4MtA620y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2