Overview

overview

10

Static

static

1

VK.js

windows7-x64

10

VK.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VK.js

  • Size

    110KB

  • Sample

    230323-sblzksgd75

  • MD5

    0a6db57a5059dce31455a18fa425ce49

  • SHA1

    52c6da01cf45004b237325cbcbd0f29991e2cb47

  • SHA256

    8c5b88b7dcd2e2e3b7653a6b77cab501591c8a2534a6866ec825078fa3423ca1

  • SHA512

    5175871a86d097ac5e8332ee0ebbbf40da3be2c4d8edc516124bd4116d52b915832a1f93b35256bcea3f8fd3752ac72c5b5d2ae77c33baa155c6ad25fc70c2f3

  • SSDEEP

    1536:pWvnqqRPOoKrE66vdP2tGWhXC2/mVuXq87eT+eWbD21U+/noV9s/:pWvnp5OoKQt2tGWV3q87kC2Sau9g

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://b13motors.com/LIrIbt/g2Mr9j3lcUEx
exe.dropper

https://rosique.com.br/lZcfJ8/JHjSQLAx8r
exe.dropper

https://fitlazer.com.br/QBPSR/ylXhw7kRZZ
exe.dropper

https://acampadentro.com/NhiBlUY/L5aaok
exe.dropper

https://netsport.com.br/wxe/WSZeGAHQxtpt
exe.dropper

https://rosiqueplasticsurgery.com/8TN/CrLghq36pd
exe.dropper

https://centrovivencialdepsicoterapias.com/wGJX/cCeLY5N4R

Targets

    • Target

      VK.js

    • Size

      110KB

    • MD5

      0a6db57a5059dce31455a18fa425ce49

    • SHA1

      52c6da01cf45004b237325cbcbd0f29991e2cb47

    • SHA256

      8c5b88b7dcd2e2e3b7653a6b77cab501591c8a2534a6866ec825078fa3423ca1

    • SHA512

      5175871a86d097ac5e8332ee0ebbbf40da3be2c4d8edc516124bd4116d52b915832a1f93b35256bcea3f8fd3752ac72c5b5d2ae77c33baa155c6ad25fc70c2f3

    • SSDEEP

      1536:pWvnqqRPOoKrE66vdP2tGWhXC2/mVuXq87eT+eWbD21U+/noV9s/:pWvnp5OoKQt2tGWV3q87kC2Sau9g

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks