Overview

overview

10

Static

static

1

aN-weyGdf-4734.js

windows7-x64

10

aN-weyGdf-4734.js

windows10-1703-x64

10

aN-weyGdf-4734.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aN-weyGdf-4734.js

  • Size

    49KB

  • Sample

    230316-k4r3asaa99

  • MD5

    110f35fe0979fdc0adca48ccf2bf8567

  • SHA1

    071215a9777e6eae6bec83a3e7a8ab975cc608d7

  • SHA256

    026b1ae348a44daf964d7f3271a84c7e7b0f61cf5932f7b07ced258e98f8865d

  • SHA512

    32f9fd8d63fcd11ffa43732ab4f7f4f3f4e20f502be0349d67f486445bc8505236847fb93f062be5bdc660eb882941296e60015cc6aff5df9c1ffc114df7222c

  • SSDEEP

    768:+G3YgQtUjXN6ktwyjGFnTZOOoYfPxpmdUJRF+nS9ITetKfuTX6LGUwDJoHnE84/L:/ngowFnTEOoYfjvho7Hnn21T

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://198.44.132.63/nCePgMjGvyZW.dat
exe.dropper

http://87.236.146.84/C0fB6OJKc.dat
exe.dropper

http://139.180.170.206/NvXo4Oo4Rh.dat
exe.dropper

http://128.254.207.26/4qgi7k.dat
exe.dropper

http://206.53.48.51/6K2WKcT1gN.dat
exe.dropper

http://94.131.115.19/sw2XwiFns.dat

Targets

    • Target

      aN-weyGdf-4734.js

    • Size

      49KB

    • MD5

      110f35fe0979fdc0adca48ccf2bf8567

    • SHA1

      071215a9777e6eae6bec83a3e7a8ab975cc608d7

    • SHA256

      026b1ae348a44daf964d7f3271a84c7e7b0f61cf5932f7b07ced258e98f8865d

    • SHA512

      32f9fd8d63fcd11ffa43732ab4f7f4f3f4e20f502be0349d67f486445bc8505236847fb93f062be5bdc660eb882941296e60015cc6aff5df9c1ffc114df7222c

    • SSDEEP

      768:+G3YgQtUjXN6ktwyjGFnTZOOoYfPxpmdUJRF+nS9ITetKfuTX6LGUwDJoHnE84/L:/ngowFnTEOoYfjvho7Hnn21T

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v6

Tasks