1d2dea228711911706644a3cd6c99de67834629173d668a20538eb88f886baaa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.js
Size

70KB
Sample

230516-myzlashd6z
MD5

3447468c4485a8305c587e3445ea9f05
SHA1

ade8b60063cd1190b1cde8e2687b0d2a284f23db
SHA256

1d2dea228711911706644a3cd6c99de67834629173d668a20538eb88f886baaa
SHA512

d23a4d06cbd8a4137a70f0130df23115e007bc7c2498f4a6e2dc80c2bd808093ad12457db3e0170ae79a85d822d01f872332f2da09fdc802851ac4c1b686d75b
SSDEEP

1536:B3RzOT02inZChRGNjSy22JJkarJGaFIZvT:Bh202nONj9zJWeoaGZvT

Score

8^/10

Malware Config

Targets

- Target
  
  file.js
- Size
  
  70KB
- MD5
  
  3447468c4485a8305c587e3445ea9f05
- SHA1
  
  ade8b60063cd1190b1cde8e2687b0d2a284f23db
- SHA256
  
  1d2dea228711911706644a3cd6c99de67834629173d668a20538eb88f886baaa
- SHA512
  
  d23a4d06cbd8a4137a70f0130df23115e007bc7c2498f4a6e2dc80c2bd808093ad12457db3e0170ae79a85d822d01f872332f2da09fdc802851ac4c1b686d75b
- SSDEEP
  
  1536:B3RzOT02inZChRGNjSy22JJkarJGaFIZvT:Bh202nONj9zJWeoaGZvT
Score

8^/10
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1