Overview

overview

8

Static

static

1

file.js

windows7-x64

3

file.js

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.js

  • Size

    164KB

  • Sample

    230831-xcen4she42

  • MD5

    89c895424ad009ee69b99496625beb42

  • SHA1

    44c4ad6b7709f577dc788d8fa9a8943ccdead786

  • SHA256

    0c6b51d9b1203c4e6b317a733144ee5d10cdcbe1f93675ea830f35c0a8207f55

  • SHA512

    14d3335391bf3117b4e9bd033fa9142734c04905103cb79b82b356e690230790ea69fec77457ca4ff0f0f0f6d51ab39d519500041505e08d78e6fb76db55df3e

  • SSDEEP

    3072:Vtg4jw7A+peP+/dOUsJrB15KIrdGhgh+/BB62DEXMEpIU25zQqzEtVRnp9qi05zW:Vtg4jw7A+L/dOUsJrB15KIrdOgA/BB6r

Score
8/10

Malware Config

Targets

    • Target

      file.js

    • Size

      164KB

    • MD5

      89c895424ad009ee69b99496625beb42

    • SHA1

      44c4ad6b7709f577dc788d8fa9a8943ccdead786

    • SHA256

      0c6b51d9b1203c4e6b317a733144ee5d10cdcbe1f93675ea830f35c0a8207f55

    • SHA512

      14d3335391bf3117b4e9bd033fa9142734c04905103cb79b82b356e690230790ea69fec77457ca4ff0f0f0f6d51ab39d519500041505e08d78e6fb76db55df3e

    • SSDEEP

      3072:Vtg4jw7A+peP+/dOUsJrB15KIrdGhgh+/BB62DEXMEpIU25zQqzEtVRnp9qi05zW:Vtg4jw7A+L/dOUsJrB15KIrdOgA/BB6r

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks