4710830817a27c9aabb99680494fd1f2be8482b3dfd81c284eebd73f6c28792e | Triage

Sharing

General

Target

20139310562712821802.js
Size

19KB
Sample

240725-w8z49axbrl
MD5

96c9d680248b45cb1f6cdb6ef905e0e2
SHA1

489798710d143d3776a8f5636dad7b421b825b9e
SHA256

4710830817a27c9aabb99680494fd1f2be8482b3dfd81c284eebd73f6c28792e
SHA512

7efabbb0c6b6e271ba5ae8956b1bcc347f443b5eab2ff3904886b1b0c07e47f92c56d285cbe1916a880a40dab666fa88b8fdf9f3b064375e747a90293bb8f0b4
SSDEEP

192:Na1WD5IjmunifAbap5rr2EzaX5/eCigZ+5dSWpKxJ5xcv:Na1Wd2muiIb8rr2Ezap/e1E0dSWpK1mv

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  20139310562712821802.js
- Size
  
  19KB
- MD5
  
  96c9d680248b45cb1f6cdb6ef905e0e2
- SHA1
  
  489798710d143d3776a8f5636dad7b421b825b9e
- SHA256
  
  4710830817a27c9aabb99680494fd1f2be8482b3dfd81c284eebd73f6c28792e
- SHA512
  
  7efabbb0c6b6e271ba5ae8956b1bcc347f443b5eab2ff3904886b1b0c07e47f92c56d285cbe1916a880a40dab666fa88b8fdf9f3b064375e747a90293bb8f0b4
- SSDEEP
  
  192:Na1WD5IjmunifAbap5rr2EzaX5/eCigZ+5dSWpKxJ5xcv:Na1Wd2muiIb8rr2Ezap/e1E0dSWpK1mv
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution