21cbf06080ae61f95617b3f65f85af5a1390133af6c5c516ac251f9f9cde7fa7 | Triage

Sharing

General

Target

57cfc3b0b53e856c78b47867d7013516.js
Size

35KB
Sample

231013-rg9r6acc58
MD5

57cfc3b0b53e856c78b47867d7013516
SHA1

96b24cfafc899c611fbf10cd71c2ea164d494498
SHA256

21cbf06080ae61f95617b3f65f85af5a1390133af6c5c516ac251f9f9cde7fa7
SHA512

ee0bc079d5a99c6c109bac39aa5424ed9bc550c5090e96328790edecc285fff5a64c7026739dab2e27dab28e78075917cdf86463571f982fc6a6b82405216563
SSDEEP

768:xu5lDXfNaS8QzGeEU05ZDU9C6GSeIf+y5af1y/W5xkV8NXP4a7H++ffchuR5M3Q:TB0Gh1y/q/H

Score

8^/10

Malware Config

Targets

- Target
  
  57cfc3b0b53e856c78b47867d7013516.js
- Size
  
  35KB
- MD5
  
  57cfc3b0b53e856c78b47867d7013516
- SHA1
  
  96b24cfafc899c611fbf10cd71c2ea164d494498
- SHA256
  
  21cbf06080ae61f95617b3f65f85af5a1390133af6c5c516ac251f9f9cde7fa7
- SHA512
  
  ee0bc079d5a99c6c109bac39aa5424ed9bc550c5090e96328790edecc285fff5a64c7026739dab2e27dab28e78075917cdf86463571f982fc6a6b82405216563
- SSDEEP
  
  768:xu5lDXfNaS8QzGeEU05ZDU9C6GSeIf+y5af1y/W5xkV8NXP4a7H++ffchuR5M3Q:TB0Gh1y/q/H
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2