5de3976175312399164e7ea22759b48b2d8827e4cffd859bef4de8c680d94452 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

591064702232031731.js
Size

18KB
Sample

240726-bbwqcawdmp
MD5

5810fc391e2766e3df9e12fc70a3aa4b
SHA1

cd428d782d0c016630ed3e2d760092ac68560298
SHA256

5de3976175312399164e7ea22759b48b2d8827e4cffd859bef4de8c680d94452
SHA512

46de950b22452a4fe6a36b70f38841f1b2a15fad5efef0804db73d17a5252051260fb2c6af58485a9f3d4ffbba7a62a032f95253a2b3b4959dccb5fd9e663b55
SSDEEP

384:UIr5Pzj+5J4bzbxoSiDZrqOpE6rqtxYCV5r1eb1/dVbr6l0cN2frqxqy+xqxAGeu:1y5uPxuHY8gHY0

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  591064702232031731.js
- Size
  
  18KB
- MD5
  
  5810fc391e2766e3df9e12fc70a3aa4b
- SHA1
  
  cd428d782d0c016630ed3e2d760092ac68560298
- SHA256
  
  5de3976175312399164e7ea22759b48b2d8827e4cffd859bef4de8c680d94452
- SHA512
  
  46de950b22452a4fe6a36b70f38841f1b2a15fad5efef0804db73d17a5252051260fb2c6af58485a9f3d4ffbba7a62a032f95253a2b3b4959dccb5fd9e663b55
- SSDEEP
  
  384:UIr5Pzj+5J4bzbxoSiDZrqOpE6rqtxYCV5r1eb1/dVbr6l0cN2frqxqy+xqxAGeu:1y5uPxuHY8gHY0
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution