e43fce049074b91782ec0c826b7ce89402dfed3053e23b15d8472264b63ebbc8 | Triage

Sharing

General

Target

UnROZ8OzWeXQ8.js
Size

333KB
Sample

230614-jjqhasee43
MD5

f9807c72ccd670f2146838b208e127a0
SHA1

992f7a83fe2c2fe108668bea066dae52102a1a02
SHA256

e43fce049074b91782ec0c826b7ce89402dfed3053e23b15d8472264b63ebbc8
SHA512

46e1a5832d8f9d6195a080ba6e9a28ea7645b903040abbba9e02e66e29ac81307f45a4383fc21168d1b5c9b5400be72f10644300fab38401a0ad5bbab0ff8b26
SSDEEP

6144:bSfr0dh2tgcH6YTkM0cNRcpZwg/EBQ+8N/ygD1pRbKe4b3gNj4mdDhS:bSfrSh2tgcH6YTkMXRcpZwg/QQ+I/ygG

Score

8^/10

Malware Config

Targets

- Target
  
  UnROZ8OzWeXQ8.js
- Size
  
  333KB
- MD5
  
  f9807c72ccd670f2146838b208e127a0
- SHA1
  
  992f7a83fe2c2fe108668bea066dae52102a1a02
- SHA256
  
  e43fce049074b91782ec0c826b7ce89402dfed3053e23b15d8472264b63ebbc8
- SHA512
  
  46e1a5832d8f9d6195a080ba6e9a28ea7645b903040abbba9e02e66e29ac81307f45a4383fc21168d1b5c9b5400be72f10644300fab38401a0ad5bbab0ff8b26
- SSDEEP
  
  6144:bSfr0dh2tgcH6YTkM0cNRcpZwg/EBQ+8N/ygD1pRbKe4b3gNj4mdDhS:bSfrSh2tgcH6YTkMXRcpZwg/QQ+I/ygG
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2