Overview

overview

8

Static

static

1

ПАО «�...�а.js

windows7-x64

8

ПАО «�...�а.js

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5e2f5d76037f5153412049721a10e382_JaffaCakes118

  • Size

    3KB

  • Sample

    240520-kppzdscb65

  • MD5

    5e2f5d76037f5153412049721a10e382

  • SHA1

    5e959b8c3eccf24a7ee09397e7290dd0e3849c57

  • SHA256

    f0018e9ee52604745ab35648d582debe47b01e73fdd86ebd9a08c513c2206e39

  • SHA512

    0829edb1f73e99e30880a0f4a0029270af73c99214a58e3100b262cbf83ef8341251839cd5b01b66bf55994271b4290d5bbd7012331156272d77c3200e9dfeaf

Score
8/10
execution

Malware Config

Targets

    • Target

      ПАО «Группа Компаний ПИК» подробности заказа.js

    • Size

      6KB

    • MD5

      41a7eca4bffa6a286f47a0ff9b96d153

    • SHA1

      eab7b5c4bd2d4087d03a1219f0827496f02fbb72

    • SHA256

      eb81490c72ee724acace8b5bcfa8c20a95b53da6f29b9126456ea438bbe65331

    • SHA512

      47f520459faaed8642d27a3b56c451ed478b2aa60ca1d5e0ce325b12bd27c93fad96d1554bb08b00f37ec878ad4e99bc0a3976d3ac638de2a7f89dd4bb9d7baf

    • SSDEEP

      192:fyjM5NfQGUNp+thIqaAxtzPeWEusrplXd847YYe:KjM5NRvIRiBx0rmFYe

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks