242ca228c87d089a24eb4e44f280e117fbb9a73ee0f54d3f2148265c820c062c | Triage

Sharing

General

Target

502716055140392384.js
Size

20KB
Sample

240725-1dn6qawcnl
MD5

927927346fa85e55133460eedf7a3568
SHA1

fe8de12947d1e42128dd9134cdd88801d935cd8f
SHA256

242ca228c87d089a24eb4e44f280e117fbb9a73ee0f54d3f2148265c820c062c
SHA512

0084c6a70fb32c0ce56f0209a07803bc0cab3cbb4dec41d97b1ed7f8b09552528693b71861919ea7176c2a12b612255a6062909c66d65f6836db727b71884354
SSDEEP

384:c9vkYXovBrTfrV00jCK8DR/OvYzXQF7aubKnOq6TMOGlbUgHbUOpyq12Si/kVSff:Q4dWLTVPEbIsw/e/80l/e/8X

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  502716055140392384.js
- Size
  
  20KB
- MD5
  
  927927346fa85e55133460eedf7a3568
- SHA1
  
  fe8de12947d1e42128dd9134cdd88801d935cd8f
- SHA256
  
  242ca228c87d089a24eb4e44f280e117fbb9a73ee0f54d3f2148265c820c062c
- SHA512
  
  0084c6a70fb32c0ce56f0209a07803bc0cab3cbb4dec41d97b1ed7f8b09552528693b71861919ea7176c2a12b612255a6062909c66d65f6836db727b71884354
- SSDEEP
  
  384:c9vkYXovBrTfrV00jCK8DR/OvYzXQF7aubKnOq6TMOGlbUgHbUOpyq12Si/kVSff:Q4dWLTVPEbIsw/e/80l/e/8X
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution