Overview

overview

8

Static

static

1

Update_123.0.6312.js

windows7-x64

8

Update_123.0.6312.js

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Update_123.0.6312.js

  • Size

    6.4MB

  • Sample

    240408-tfmbksdd32

  • MD5

    2f1426a46741e36e43119d069a8e85d8

  • SHA1

    5b7aa81bd3fbd37aa3e9b1c4b9fec9b67435a7d3

  • SHA256

    1de0458822ac2ce81c11a64fa8c4eb90d6b9173c10eb89d4dedbecaaf566b1a6

  • SHA512

    8674b5779540e9d1c478348f0403609e5ceecc594490f39fa6bdf9478b05b37be90417db0ad49a001228199b13a236a4fc4c5292d4e17123a3017b51e44726b4

  • SSDEEP

    49152:B7V7zjCxbzqHlp4LhyN0kghDzLZzjYzYsmCW+8z2V35//9SGGqHm3quVIKXgxcEm:C

Score
8/10

Malware Config

Targets

    • Target

      Update_123.0.6312.js

    • Size

      6.4MB

    • MD5

      2f1426a46741e36e43119d069a8e85d8

    • SHA1

      5b7aa81bd3fbd37aa3e9b1c4b9fec9b67435a7d3

    • SHA256

      1de0458822ac2ce81c11a64fa8c4eb90d6b9173c10eb89d4dedbecaaf566b1a6

    • SHA512

      8674b5779540e9d1c478348f0403609e5ceecc594490f39fa6bdf9478b05b37be90417db0ad49a001228199b13a236a4fc4c5292d4e17123a3017b51e44726b4

    • SSDEEP

      49152:B7V7zjCxbzqHlp4LhyN0kghDzLZzjYzYsmCW+8z2V35//9SGGqHm3quVIKXgxcEm:C

    Score
    8/10

    • Blocklisted process makes network request

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks