Overview

overview

7

Static

static

1

sample.js

windows11-21h2-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sample

  • Size

    83KB

  • Sample

    240522-2ckbtabb9s

  • MD5

    273741f903dfddaac6b2193c00ad9bca

  • SHA1

    c23eec471125f8c259411f181ec11ea2832a71d2

  • SHA256

    842a46fd1a1b3385d50f32761a77e59d7c5f5acb828c1d2307b1dfae2ebe71aa

  • SHA512

    db00720424f58ea4ceba98f4f71307f286ec6759de7a526cd432958204b5abcdfa7bc29c5650b11a5e188fd82813a3399efaece610027db1078174e166ba837c

  • SSDEEP

    1536:bqcEYq4NOFYoIjfN08KQkeSVN0NtsPtzRR2XKsKYs:OcEYqmOKf4tzjnr

Score
7/10
microsoftexecutionphishing

Malware Config

Targets

    • Target

      sample

    • Size

      83KB

    • MD5

      273741f903dfddaac6b2193c00ad9bca

    • SHA1

      c23eec471125f8c259411f181ec11ea2832a71d2

    • SHA256

      842a46fd1a1b3385d50f32761a77e59d7c5f5acb828c1d2307b1dfae2ebe71aa

    • SHA512

      db00720424f58ea4ceba98f4f71307f286ec6759de7a526cd432958204b5abcdfa7bc29c5650b11a5e188fd82813a3399efaece610027db1078174e166ba837c

    • SSDEEP

      1536:bqcEYq4NOFYoIjfN08KQkeSVN0NtsPtzRR2XKsKYs:OcEYqmOKf4tzjnr

    Score
    7/10
    microsoftexecutionphishing

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks