025dcb6f87ae82d8ff36c1550dba050bed3ce54d3474ddfbd95f97a78d1b9173 | Triage

Sharing

General

Target

2931516581319886452.js
Size

10KB
Sample

240726-jbk8lstgqk
MD5

47f11f740736c31a5b550f6579fcc6f7
SHA1

f7cbb5644894443e28a0e9536d66fe399af6d4f6
SHA256

025dcb6f87ae82d8ff36c1550dba050bed3ce54d3474ddfbd95f97a78d1b9173
SHA512

4e764323c0405352aad44dcefc0e2a636aa504722d250ab23310c71f91b30aecc9bcad34641152174e33bfb848ce83d42ec9bf2ac8282def1193eeef9fbb5d25
SSDEEP

96:VdBIXiUhKXbk14LnEC3Udq18vQGSCyEKI6OU6oyhzsJEAi7:/BxeMbcUEw8ACUh8

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  2931516581319886452.js
- Size
  
  10KB
- MD5
  
  47f11f740736c31a5b550f6579fcc6f7
- SHA1
  
  f7cbb5644894443e28a0e9536d66fe399af6d4f6
- SHA256
  
  025dcb6f87ae82d8ff36c1550dba050bed3ce54d3474ddfbd95f97a78d1b9173
- SHA512
  
  4e764323c0405352aad44dcefc0e2a636aa504722d250ab23310c71f91b30aecc9bcad34641152174e33bfb848ce83d42ec9bf2ac8282def1193eeef9fbb5d25
- SSDEEP
  
  96:VdBIXiUhKXbk14LnEC3Udq18vQGSCyEKI6OU6oyhzsJEAi7:/BxeMbcUEw8ACUh8
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution