0380fc164c82e739b5d71aecc0f6b7bfc413c3045d806c2ff8ff92ed19381ff0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0380fc164c82e739b5d71aecc0f6b7bfc413c3045d806c2ff8ff92ed19381ff0.js
Size

10KB
Sample

240820-rnjjjswfqe
MD5

0db69c09ca656d29739ab455d29f555f
SHA1

6bd9f32c39dbacc3837a7f8c4b01c56c0c510f89
SHA256

0380fc164c82e739b5d71aecc0f6b7bfc413c3045d806c2ff8ff92ed19381ff0
SHA512

dab15ca3a86a7754f9481f834f45cbe0f0ea947a231a00bade052ee867355e6c76022b985c782e3d233d14d79121bd3d7d6dbe05225a173e7e35ff81323da844
SSDEEP

48:aVwyIgKyo7catLFvVK1mgJvFZvcblNauIpGXpzJMk7OgHrFOoe7OgHrFOVFQ:ukRcy9VM3mKZ

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  0380fc164c82e739b5d71aecc0f6b7bfc413c3045d806c2ff8ff92ed19381ff0.js
- Size
  
  10KB
- MD5
  
  0db69c09ca656d29739ab455d29f555f
- SHA1
  
  6bd9f32c39dbacc3837a7f8c4b01c56c0c510f89
- SHA256
  
  0380fc164c82e739b5d71aecc0f6b7bfc413c3045d806c2ff8ff92ed19381ff0
- SHA512
  
  dab15ca3a86a7754f9481f834f45cbe0f0ea947a231a00bade052ee867355e6c76022b985c782e3d233d14d79121bd3d7d6dbe05225a173e7e35ff81323da844
- SSDEEP
  
  48:aVwyIgKyo7catLFvVK1mgJvFZvcblNauIpGXpzJMk7OgHrFOoe7OgHrFOVFQ:ukRcy9VM3mKZ
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution