a0e4f7d8fe009418f77c65b52c72ed28076edc396dba3513e003ecaff4424c4c | Triage

Sharing

General

Target

Logo-Signatur.jpg.zip
Size

1KB
Sample

240726-kmklws1dnf
MD5

6af442a7dbcab50d22e50068f52bed41
SHA1

a27e440e89e3eee4f67b4777554304247eabb56f
SHA256

a0e4f7d8fe009418f77c65b52c72ed28076edc396dba3513e003ecaff4424c4c
SHA512

eec503d17857ae1846080874d6b851d04f3a5de1f8a39fffa1d0624dfdd8b0878b4a43aed748d1c47211c234ae013aa823c55e4eaf39407a088988a6dda6eb2f

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  4122150841586320226.js
- Size
  
  10KB
- MD5
  
  0c1e00f158d5d6a5c3f02e1619fdcf8a
- SHA1
  
  a7bcdad6381477938e3b40220d491edc2c505b51
- SHA256
  
  87ed1f61f8301dfc4126effbce9afa6679cfcccc6eca97f05668783bbdda7bba
- SHA512
  
  d96065191a825e8e7e87c07ed8356208db44a6e9bda1276673762fcfa1f0db2bfd4e4ce1095a2351e14ee13300740ca4ee7f4d42ae4136919d0b2158a60d2c61
- SSDEEP
  
  96:R3pqXtywTCKtblZETUglCGCMTGi+v+iM+d6xU+ugnbMjGZgpvriFMCMTGi+v+iM+:R3pqdX9lZU8AAU5WuV1AAU5W9v
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution