Overview

overview

10

Static

static

1

NUVW1369.js

windows10-1703-x64

10

NUVW1369.js

windows7-x64

10

NUVW1369.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NUVW1369.js

  • Size

    747KB

  • Sample

    230526-t1pbnsgg91

  • MD5

    7cf38440c1bab5520f29ea4f50ec50c1

  • SHA1

    93ba640988fc04fda650ed22861460bb4a8a4768

  • SHA256

    b535dc0e3da92ff7112c9d6b8e49ed32f826554343bd16ea0b32599ee5b5c4ae

  • SHA512

    a1493b99043bc2351b1caa470f6509b7b5a88a1d3b0456917548a36882ac6603fd2e346e4869af63766abf195221601c9f2bde92f81270170098f3f809bebd22

  • SSDEEP

    3072:yTXYmBNLkwZRnXAjoxS7wCXde+pj/uzLLLNQaAapwxDY/YhNkskLJ9KR9CHccVoZ:GyWbCpN4U

Score
10/10

Malware Config

Targets

    • Target

      NUVW1369.js

    • Size

      747KB

    • MD5

      7cf38440c1bab5520f29ea4f50ec50c1

    • SHA1

      93ba640988fc04fda650ed22861460bb4a8a4768

    • SHA256

      b535dc0e3da92ff7112c9d6b8e49ed32f826554343bd16ea0b32599ee5b5c4ae

    • SHA512

      a1493b99043bc2351b1caa470f6509b7b5a88a1d3b0456917548a36882ac6603fd2e346e4869af63766abf195221601c9f2bde92f81270170098f3f809bebd22

    • SSDEEP

      3072:yTXYmBNLkwZRnXAjoxS7wCXde+pj/uzLLLNQaAapwxDY/YhNkskLJ9KR9CHccVoZ:GyWbCpN4U

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks