Overview

overview

7

Static

static

1

114912618245220744.js

windows7-x64

6

114912618245220744.js

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    logo.jpg.zip

  • Size

    1KB

  • Sample

    240725-trclhszglq

  • MD5

    bf6b3269670dfa9ee6a48ab0e919cae6

  • SHA1

    5ff7b48aa2bd4647224dea957a3e17782d7f05bc

  • SHA256

    270ba7333d57c9377f253a504033663c34e9b2a72e5b562e647bf599fca5cd89

  • SHA512

    3b64d0d8a994077c6136ef47e041e2456de62774cc0a53860a1b48ec67c406952354bcb6f8b8fecac673989a0d5f02436868d539b7c3b56b8676eb9ae43f1ca8

Score
7/10
defense_evasionexecution

Malware Config

Targets

    • Target

      114912618245220744.js

    • Size

      10KB

    • MD5

      7a65b0e2eaf76b4f3cc24d89e1eee797

    • SHA1

      beedbfcbe9b51fc2a4fa1c317f639409ef0b5530

    • SHA256

      52468d68e5d67b71243b8dc6ce684638c56c81e8aee1478035dd1c53ec5f6172

    • SHA512

      b1250568975941e1d6043048a65eddb86e8fcc9e555a3ec78c2c35176d8f3cca191cf2a8e1e12680c8acaa8fb8b98304a328ea11d0a9513bb09b783fe38b0d44

    • SSDEEP

      192:85M1Nd1YehF2+ns2fa5Ivp3hrXjapbrRMdhrXjapYD:oyjSyF2gs2fGIBxLjEbrRMHLjES

    Score
    7/10
    defense_evasionexecution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Obfuscated Files or Information: Command Obfuscation

      Adversaries may obfuscate content during command execution to impede detection.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks