Overview

overview

8

Static

static

1

dms_default

windows10-2004-x64

8

dms_fakenet

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fungicideCorejo.js

  • Size

    307KB

  • Sample

    230524-vy1glaeb4w

  • MD5

    e83b3a0ea3984b70a35db4fe7bb7c4a9

  • SHA1

    a130d85853d7f7a577e779c17b922cbd02bc2e26

  • SHA256

    26a88d3268fdddf29def9ce238fd5d18955fa62b720d2df6d095e919b14e6bf0

  • SHA512

    63fee6387993cf941e19210f873d329bd644e3876d66cd7b839a9c88f7c4d53d3da75345890c36b220c4a79e1f26f231cc5a13fc8fefb753231877941d4326ef

  • SSDEEP

    3072:zuZB3jhBc61zKPcuV0eYMrmrFPhOdDIu8xgCXFpBBQ65egF2Kf8kqyjxLEY3wQiL:mph5uV0XFPhqDIjgcbBT5egFFlTxLiBL

Score
8/10

Malware Config

Targets

    • Target

      fungicideCorejo.js

    • Size

      307KB

    • MD5

      e83b3a0ea3984b70a35db4fe7bb7c4a9

    • SHA1

      a130d85853d7f7a577e779c17b922cbd02bc2e26

    • SHA256

      26a88d3268fdddf29def9ce238fd5d18955fa62b720d2df6d095e919b14e6bf0

    • SHA512

      63fee6387993cf941e19210f873d329bd644e3876d66cd7b839a9c88f7c4d53d3da75345890c36b220c4a79e1f26f231cc5a13fc8fefb753231877941d4326ef

    • SSDEEP

      3072:zuZB3jhBc61zKPcuV0eYMrmrFPhOdDIu8xgCXFpBBQ65egF2Kf8kqyjxLEY3wQiL:mph5uV0XFPhqDIjgcbBT5egFFlTxLiBL

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks