vjw0rm | 450ccfb4d45ec165f4272371dc90349c441eff693acd4a1a9330a7f86ecb248f | Triage

Sharing

General

Target

da88541f9257f2b9c8c22e747a955e4d
Size

77KB
Sample

240321-dmlevsbg3s
MD5

da88541f9257f2b9c8c22e747a955e4d
SHA1

69b78917d2c0df18906663427a82ac9f340d2d6a
SHA256

450ccfb4d45ec165f4272371dc90349c441eff693acd4a1a9330a7f86ecb248f
SHA512

5db1983e0f6eaf339ac591252f9fceced8fc36be377e4bc04cd03fa57d42d7116ac3a008307631098932eef3b0ef06636f847d6db467725f46570d48eccc16f1
SSDEEP

384:L37hD34tUWXaT1Qs3gmW5AtvamWATHJrmn7zBmWpIXbqXR:5Q

Score

10^/10

vjw0rm trojan worm

Malware Config

Targets

- Target
  
  da88541f9257f2b9c8c22e747a955e4d
- Size
  
  77KB
- MD5
  
  da88541f9257f2b9c8c22e747a955e4d
- SHA1
  
  69b78917d2c0df18906663427a82ac9f340d2d6a
- SHA256
  
  450ccfb4d45ec165f4272371dc90349c441eff693acd4a1a9330a7f86ecb248f
- SHA512
  
  5db1983e0f6eaf339ac591252f9fceced8fc36be377e4bc04cd03fa57d42d7116ac3a008307631098932eef3b0ef06636f847d6db467725f46570d48eccc16f1
- SSDEEP
  
  384:L37hD34tUWXaT1Qs3gmW5AtvamWATHJrmn7zBmWpIXbqXR:5Q
Score

10^/10

vjw0rm trojan worm
- Vjw0rm
  Vjw0rm is a remote access trojan written in JavaScript.
  trojan worm vjw0rm
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vjw0rmtrojanworm

behavioral2

vjw0rmtrojanworm