74cc568f340953c57a8e740ab157e6b0a2e05bf5c42a138cd27126fc57645580 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Vuzovw.js
Size

273KB
Sample

230516-qrj4taaa7v
MD5

f846e46989de39162d0bb6c86fcb897e
SHA1

79b6f4d63feb6def30adf7082803d96dba995c1c
SHA256

74cc568f340953c57a8e740ab157e6b0a2e05bf5c42a138cd27126fc57645580
SHA512

1d8bfdb5c11bc672d397723a5f71bb930fcb8fc7064f5df76157baf86675d787befeac211c7eb1c68d23d987c1538a467e0140355576c2150c45edda76246ac2
SSDEEP

6144:ZaFYuadqYyKSMHos2Ede3C3u3M9e32l39wTMNQ2k8JMaPMQTd:jZqodeRA3k8l

Score

8^/10

Malware Config

Targets

- Target
  
  Vuzovw.js
- Size
  
  273KB
- MD5
  
  f846e46989de39162d0bb6c86fcb897e
- SHA1
  
  79b6f4d63feb6def30adf7082803d96dba995c1c
- SHA256
  
  74cc568f340953c57a8e740ab157e6b0a2e05bf5c42a138cd27126fc57645580
- SHA512
  
  1d8bfdb5c11bc672d397723a5f71bb930fcb8fc7064f5df76157baf86675d787befeac211c7eb1c68d23d987c1538a467e0140355576c2150c45edda76246ac2
- SSDEEP
  
  6144:ZaFYuadqYyKSMHos2Ede3C3u3M9e32l39wTMNQ2k8JMaPMQTd:jZqodeRA3k8l
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2