72c13ef0105834ea98e13caf7a3b50381beb7e66dde60c8de57bb733069bdf77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Unspaded.js
Size

245KB
Sample

230524-1v1k3sfa77
MD5

647bc192a7b05e5cfb78673b720b8471
SHA1

d86b2eb49cb219e240c7a50a547a1cca686d89d6
SHA256

72c13ef0105834ea98e13caf7a3b50381beb7e66dde60c8de57bb733069bdf77
SHA512

1b64b9e10ddefecae9654b0ec9c4c3e850625bbcb35e4e890c62ad911409ae0a528337d240b0c88e336ee51c69214d9f48e808c40688e9b313fa13b7105e72da
SSDEEP

3072:TgN24sgsZkcoQQPjmqxOKhPxk/93TQ1DI1Ki+Sl+8e2swHJWxcUj:Th4xsZUQcjmq6TeI10SQ8e2LWxFj

Score

8^/10

Malware Config

Targets

- Target
  
  Unspaded.js
- Size
  
  245KB
- MD5
  
  647bc192a7b05e5cfb78673b720b8471
- SHA1
  
  d86b2eb49cb219e240c7a50a547a1cca686d89d6
- SHA256
  
  72c13ef0105834ea98e13caf7a3b50381beb7e66dde60c8de57bb733069bdf77
- SHA512
  
  1b64b9e10ddefecae9654b0ec9c4c3e850625bbcb35e4e890c62ad911409ae0a528337d240b0c88e336ee51c69214d9f48e808c40688e9b313fa13b7105e72da
- SSDEEP
  
  3072:TgN24sgsZkcoQQPjmqxOKhPxk/93TQ1DI1Ki+Sl+8e2swHJWxcUj:Th4xsZUQcjmq6TeI10SQ8e2LWxFj
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2