ca015d4346a4a3fcfe0abcbed4913d53beaf534aaa769777dd4ec08c2c47a97b | Triage

Resubmissions

15/06/2023, 13:49

230615-q4wy5she69 8

15/06/2023, 13:45

230615-q2el3she46 8

Sharing

General

Target

MALI.JS
Size

5KB
Sample

230615-q4wy5she69
MD5

2e2a333269db2c655436c1be1be43c09
SHA1

bbc40f028bc2176367de0a17e4410b65e2a5ba6e
SHA256

ca015d4346a4a3fcfe0abcbed4913d53beaf534aaa769777dd4ec08c2c47a97b
SHA512

6a955602789aaac3ffb9e6ecd9a2878667615a1cb1d436f9095920737f7d71bd13d067c3c677da6ec08ff6488b608575236b03c3ff44505e32a48c2cc533529e
SSDEEP

96:xYk6M1fyNvTv6OjoJTv2ZcJZNFYUie52CA2ZcJZCYUiR7hUinyE7cVUfbiZqgbtO:36MRyNvTv6FJ+OZE

Score

8^/10

Malware Config

Targets

- Target
  
  MALI.JS
- Size
  
  5KB
- MD5
  
  2e2a333269db2c655436c1be1be43c09
- SHA1
  
  bbc40f028bc2176367de0a17e4410b65e2a5ba6e
- SHA256
  
  ca015d4346a4a3fcfe0abcbed4913d53beaf534aaa769777dd4ec08c2c47a97b
- SHA512
  
  6a955602789aaac3ffb9e6ecd9a2878667615a1cb1d436f9095920737f7d71bd13d067c3c677da6ec08ff6488b608575236b03c3ff44505e32a48c2cc533529e
- SSDEEP
  
  96:xYk6M1fyNvTv6OjoJTv2ZcJZNFYUie52CA2ZcJZCYUiR7hUinyE7cVUfbiZqgbtO:36MRyNvTv6FJ+OZE
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2