bd10ea6fd551953b99b371a6eecd94d1c0a7141b0a16fcf10060acdbc284d978 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2574832239122335225.js
Size

17KB
Sample

240726-f9e8gaygqk
MD5

a1f1bdf80295b8a0645e9d5f1f4415e0
SHA1

42c23d5926c56035369a7d52564998b75b1f81b9
SHA256

bd10ea6fd551953b99b371a6eecd94d1c0a7141b0a16fcf10060acdbc284d978
SHA512

523845ebd9027a18694535406cde606c3634364e65fef2e00e2feb822b559ed00bab3d18e9cd7956533e8874ec0d37bc2582161e3922e242f3d19a967f5bf8bb
SSDEEP

192:TNR8h8S24MX5dx4a5DVdpY4a573q8wtG0iFQcPrEVG0iFQ4eBNftkVhM:7m8SfMJH4OM4m6ufDPeBZtq+

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  2574832239122335225.js
- Size
  
  17KB
- MD5
  
  a1f1bdf80295b8a0645e9d5f1f4415e0
- SHA1
  
  42c23d5926c56035369a7d52564998b75b1f81b9
- SHA256
  
  bd10ea6fd551953b99b371a6eecd94d1c0a7141b0a16fcf10060acdbc284d978
- SHA512
  
  523845ebd9027a18694535406cde606c3634364e65fef2e00e2feb822b559ed00bab3d18e9cd7956533e8874ec0d37bc2582161e3922e242f3d19a967f5bf8bb
- SSDEEP
  
  192:TNR8h8S24MX5dx4a5DVdpY4a573q8wtG0iFQcPrEVG0iFQ4eBNftkVhM:7m8SfMJH4OM4m6ufDPeBZtq+
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution