29842903f517304287ca7383efcdb14af1991ce402ffdab51d3e9b3b623aa03d | Triage

Sharing

General

Target

Aupu.js
Size

118KB
Sample

230523-j9e49afd4v
MD5

d485cbc53d67516045676f1b98fd4a26
SHA1

84f19f4a339e35abd616f90cdebc7821f5527e40
SHA256

29842903f517304287ca7383efcdb14af1991ce402ffdab51d3e9b3b623aa03d
SHA512

d942d568c5c6ae53464e577e0a988f995d4b1456e0a2d1a47f192b85ead526203c2a5106dfc408bd893f8fff4de6bd300840507f3d46fc9aff291b9c37b4ae60
SSDEEP

1536:pz3igT643QhNFkEVcE7+WP3qjnqSrA2MaiesDzcfU4w4c+JQYvNCC:YgWlLFjciZP3AqSrA21iesDzcfU4wGJR

Score

8^/10

Malware Config

Targets

- Target
  
  Aupu.js
- Size
  
  118KB
- MD5
  
  d485cbc53d67516045676f1b98fd4a26
- SHA1
  
  84f19f4a339e35abd616f90cdebc7821f5527e40
- SHA256
  
  29842903f517304287ca7383efcdb14af1991ce402ffdab51d3e9b3b623aa03d
- SHA512
  
  d942d568c5c6ae53464e577e0a988f995d4b1456e0a2d1a47f192b85ead526203c2a5106dfc408bd893f8fff4de6bd300840507f3d46fc9aff291b9c37b4ae60
- SSDEEP
  
  1536:pz3igT643QhNFkEVcE7+WP3qjnqSrA2MaiesDzcfU4w4c+JQYvNCC:YgWlLFjciZP3AqSrA21iesDzcfU4wGJR
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2