4dce8991fb2942cb8443aba697311072aa25fc61b4b4186a54e7956c2bec6799 | Triage

Resubmissions

02-11-2023 15:23

231102-ssnvhafg98 10

01-11-2023 21:26

231101-z96j7sdc7x 7

Sharing

General

Target

gentle.js
Size

135KB
Sample

231101-z96j7sdc7x
MD5

ffa38ff8c434945de11b621958170a10
SHA1

6429a10526d4224e5a9d5e4ab9f71cfa3a1bd460
SHA256

4dce8991fb2942cb8443aba697311072aa25fc61b4b4186a54e7956c2bec6799
SHA512

f4f5fcde08d4ab8d167071ba9eed55cb4d575251da66fcd8005a85970f26e07be31a6f65a42ff47ee238e498f66fef625c97eabe0c87eee3f18ae1d3f98d022a
SSDEEP

1536:BZUTSCM9Cfq7u02PmUVdGXjXl4xc5KTPBoMqS7j8frPWgtZPnCUQrNgZnFFQE/0c:0T9U7hgaX6eerjqlI2IO6Mzqfpu

Score

7^/10

Malware Config

Targets

- Target
  
  gentle.js
- Size
  
  135KB
- MD5
  
  ffa38ff8c434945de11b621958170a10
- SHA1
  
  6429a10526d4224e5a9d5e4ab9f71cfa3a1bd460
- SHA256
  
  4dce8991fb2942cb8443aba697311072aa25fc61b4b4186a54e7956c2bec6799
- SHA512
  
  f4f5fcde08d4ab8d167071ba9eed55cb4d575251da66fcd8005a85970f26e07be31a6f65a42ff47ee238e498f66fef625c97eabe0c87eee3f18ae1d3f98d022a
- SSDEEP
  
  1536:BZUTSCM9Cfq7u02PmUVdGXjXl4xc5KTPBoMqS7j8frPWgtZPnCUQrNgZnFFQE/0c:0T9U7hgaX6eerjqlI2IO6Mzqfpu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2