236949fe47351706a131cb23f4d475acfe1ae89c00c394c19b9cbbb10d3556c4 | Triage

Sharing

General

Target

SA396.zip
Size

1KB
Sample

240721-rwsr7atcqf
MD5

cb5c636f16e1120eb0fd89ac8bf17f15
SHA1

dbf381b6b95965388266e7d2295fc8303600f9f6
SHA256

236949fe47351706a131cb23f4d475acfe1ae89c00c394c19b9cbbb10d3556c4
SHA512

e98d1189a5c322627346dfd861936e483d118057ec7f9495cc218b500d908dad8cd257672c613c05a45fc6f7253f9e18b0d357046294c814660da88ab65d7190

Score

7^/10

execution

Malware Config

Targets

- Target
  
  11336282071785372.js
- Size
  
  4KB
- MD5
  
  d00a7a6a0ddfbc0df3c7d6db66dbf286
- SHA1
  
  11c529bd6d5bde1f3ffec3ba32499286d9623315
- SHA256
  
  8057155e9ad37cf19fcd7c106d210ab8ce6ce6c74d81f2d9f238482f576ce0ec
- SHA512
  
  c42c4b884ef4664279c0345a9c36d9b86f747d6a272a5820d3a7127b0b33e6492d1833c5a7dcbd0de3f4e37bc5abac131b37f1b00d92e03f897c061128ff0143
- SSDEEP
  
  48:h0C9waCykC5wbWQkIr4+dZC4Nofa6fKXAk+Ea6fKXk:h0C9rr4WUddJTAkSTk
Score

7^/10

execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2