Overview

overview

10

Static

static

1

informatio...978.js

windows7-x64

10

informatio...978.js

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    information_7_apr-4753978.js

  • Size

    67KB

  • Sample

    230407-tdsqksbe6z

  • MD5

    71e7a2549311647a6178b84393700bf8

  • SHA1

    5d605717cc5ff74f0b993274790ec343fe2c2687

  • SHA256

    8a2aa35f1e8e8186a0f4a6684d3cab54e093914b2dba38f59d5d01c6ee6aaf04

  • SHA512

    1ec12ae9f544de092e14daf118be87d64498bd0c3590281f1e44bc98809f89c0a4b60c172fd9ad19503a8cd466f0361f5336d140a25ea21f5747142745ccbd4a

  • SSDEEP

    1536:EMtPc6S1wxBOGKZUXldvp3yZEKs7+QhqWIoCqlO1wKF7x1tNRhn4xVNe/6BPfGMd:i1wxBOGKZUXldvp3yZEKs7+QhqWIoCqZ

Score
10/10
truebotdownloader

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://62.204.41.69/dll.png

Targets

    • Target

      information_7_apr-4753978.js

    • Size

      67KB

    • MD5

      71e7a2549311647a6178b84393700bf8

    • SHA1

      5d605717cc5ff74f0b993274790ec343fe2c2687

    • SHA256

      8a2aa35f1e8e8186a0f4a6684d3cab54e093914b2dba38f59d5d01c6ee6aaf04

    • SHA512

      1ec12ae9f544de092e14daf118be87d64498bd0c3590281f1e44bc98809f89c0a4b60c172fd9ad19503a8cd466f0361f5336d140a25ea21f5747142745ccbd4a

    • SSDEEP

      1536:EMtPc6S1wxBOGKZUXldvp3yZEKs7+QhqWIoCqlO1wKF7x1tNRhn4xVNe/6BPfGMd:i1wxBOGKZUXldvp3yZEKs7+QhqWIoCqZ

    Score
    10/10
    truebotdownloader

    • TrueBot payload

    • TrueBot, Silence.Downloader

      A downloader attributed to Silence group first seen in 2017.

      downloadertruebot

    • Blocklisted process makes network request

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks