621495df03931b4b446ffa845de71f8354045b0a0fb9eee600d37ae4ce2e0fbf | Triage

Sharing

General

Target

sample
Size

391KB
Sample

240530-nxpv5sha69
MD5

d794fcaa98231e62371eb32d4501fde3
SHA1

f0484ca2ce8125d8e08734439b5df473c4d7764d
SHA256

621495df03931b4b446ffa845de71f8354045b0a0fb9eee600d37ae4ce2e0fbf
SHA512

e7ba604f3ad9ee8c8da135675a510762b6b8aa5e36afca9e072ec70eb7e0cfb6cc464beec1c6f7b8d0ba5e4df69a2891e53da373319ec769d2d0f9979a5bdcc8
SSDEEP

12288:BnF18hK7Dkrk/Gm/xkONuGemkf1karJGMXNPV60j7WLewdfnOBJ5lx85xZCCQIaw:BQeJCJF3aZaffX/spK5cfgx7ejj

Score

6^/10

execution

Malware Config

Targets

- Target
  
  sample
- Size
  
  391KB
- MD5
  
  d794fcaa98231e62371eb32d4501fde3
- SHA1
  
  f0484ca2ce8125d8e08734439b5df473c4d7764d
- SHA256
  
  621495df03931b4b446ffa845de71f8354045b0a0fb9eee600d37ae4ce2e0fbf
- SHA512
  
  e7ba604f3ad9ee8c8da135675a510762b6b8aa5e36afca9e072ec70eb7e0cfb6cc464beec1c6f7b8d0ba5e4df69a2891e53da373319ec769d2d0f9979a5bdcc8
- SSDEEP
  
  12288:BnF18hK7Dkrk/Gm/xkONuGemkf1karJGMXNPV60j7WLewdfnOBJ5lx85xZCCQIaw:BQeJCJF3aZaffX/spK5cfgx7ejj
Score

6^/10

execution
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2