Overview

overview

10

Static

static

1

8b213c8de6...510.js

windows7-x64

10

8b213c8de6...510.js

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b213c8de60820649a9a15f042812510

  • Size

    87KB

  • Sample

    240203-cpdmcshaaq

  • MD5

    8b213c8de60820649a9a15f042812510

  • SHA1

    e18bb318cd18516c09015f9cce8923be4f7921dc

  • SHA256

    4b605b3c7ce9bf7d33bf114554a137bdf14330171fca524b68e39443f6806b38

  • SHA512

    dbd7039a6e49b0a4714f09ca4a75a067b1784efc2a87124db71f2cee115880602bb53d180a17fd859835a92251d9f724ba8f59a63c0ec2bdd7b04128bb27a859

  • SSDEEP

    1536:59Ry98guHVBqqg2bcruayUHmLKeZaMU7GwbWBPwVGWl9SZ8kV8Gp/5bzIEN4t/ot:59Ry98guHVBqqg2bcruzUHmLKeMMU7GL

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://smart-integrator.hr/pornhub.php

Targets

    • Target

      8b213c8de60820649a9a15f042812510

    • Size

      87KB

    • MD5

      8b213c8de60820649a9a15f042812510

    • SHA1

      e18bb318cd18516c09015f9cce8923be4f7921dc

    • SHA256

      4b605b3c7ce9bf7d33bf114554a137bdf14330171fca524b68e39443f6806b38

    • SHA512

      dbd7039a6e49b0a4714f09ca4a75a067b1784efc2a87124db71f2cee115880602bb53d180a17fd859835a92251d9f724ba8f59a63c0ec2bdd7b04128bb27a859

    • SSDEEP

      1536:59Ry98guHVBqqg2bcruayUHmLKeZaMU7GwbWBPwVGWl9SZ8kV8Gp/5bzIEN4t/ot:59Ry98guHVBqqg2bcruzUHmLKeMMU7GL

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks