93672be1ab8b48aed80564c893d88151a2cff487e11146eafed4211c59efaf9f | Triage

Sharing

General

Target

2991516735317804308.js
Size

18KB
Sample

240726-ddmxbssbjk
MD5

4b76b6aec6500fd23662020a440440bf
SHA1

5ef900bfabff318ab4941037422e82cfeb29f472
SHA256

93672be1ab8b48aed80564c893d88151a2cff487e11146eafed4211c59efaf9f
SHA512

29081891c3192aafa705ef60189e9d55847d7f92a509637cd8b5cb0ae17c51ad8c84f2f05e3f62f842fec559cb51017897b7ed89578628ba2129111b3b7f19ad
SSDEEP

96:GDE8D8EgHsZXnNmRsmnWXSMNrXSwD6XSDLrXSwD8:c58zHw9mRsmW1xb6+Hb8

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  2991516735317804308.js
- Size
  
  18KB
- MD5
  
  4b76b6aec6500fd23662020a440440bf
- SHA1
  
  5ef900bfabff318ab4941037422e82cfeb29f472
- SHA256
  
  93672be1ab8b48aed80564c893d88151a2cff487e11146eafed4211c59efaf9f
- SHA512
  
  29081891c3192aafa705ef60189e9d55847d7f92a509637cd8b5cb0ae17c51ad8c84f2f05e3f62f842fec559cb51017897b7ed89578628ba2129111b3b7f19ad
- SSDEEP
  
  96:GDE8D8EgHsZXnNmRsmnWXSMNrXSwD6XSDLrXSwD8:c58zHw9mRsmW1xb6+Hb8
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution