valak | 2c98f53860dea50bae2bd50c1e84fe44f7d94df0a756d79ad6bbdc778948e683 | Triage

Sharing

General

Target

92eeeba062b887fb60a664de550ca5aa
Size

248KB
Sample

240205-zbrndshgcl
MD5

92eeeba062b887fb60a664de550ca5aa
SHA1

e422797e5e3cc8bd3dcbc7bc338f5e7f15d3d6eb
SHA256

2c98f53860dea50bae2bd50c1e84fe44f7d94df0a756d79ad6bbdc778948e683
SHA512

3d8a66423748cffbfb8e08e92037230403af0087dcddc16749eb438a37459def790e4d7bbd21b7ba6c8193efe173bc8d14e100cc43723808091826826cc4cbcf
SSDEEP

6144:7sZV/WeuAci2Fe1Eu9DB5aFRBS6KnvXM3oIFt0dw5B8tAe:7sWeuAcLerWFXS6KvcoIn0a5OtAe

Score

10^/10

valak loader

Malware Config

Targets

- Target
  
  92eeeba062b887fb60a664de550ca5aa
- Size
  
  248KB
- MD5
  
  92eeeba062b887fb60a664de550ca5aa
- SHA1
  
  e422797e5e3cc8bd3dcbc7bc338f5e7f15d3d6eb
- SHA256
  
  2c98f53860dea50bae2bd50c1e84fe44f7d94df0a756d79ad6bbdc778948e683
- SHA512
  
  3d8a66423748cffbfb8e08e92037230403af0087dcddc16749eb438a37459def790e4d7bbd21b7ba6c8193efe173bc8d14e100cc43723808091826826cc4cbcf
- SSDEEP
  
  6144:7sZV/WeuAci2Fe1Eu9DB5aFRBS6KnvXM3oIFt0dw5B8tAe:7sWeuAcLerWFXS6KvcoIn0a5OtAe
Score

10^/10

valak loader
- Valak
  Valak is a JavaScript loader, a link in a chain of distribution of other malware families.
  loader valak
- Valak JavaScript Loader
- Valak JavaScript loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2