0c4984c38a0bfc495429feaed5a6d483157efde661b360e31b685201ae96ca8d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c4984c38a0bfc495429feaed5a6d483157efde661b360e31b685201ae96ca8d.js
Size

11KB
Sample

240820-rqryps1apl
MD5

71385aca859b81b3af062bfbe3f5b04e
SHA1

b81eac68a127a079d349f7d570a5f0c941ea6b1f
SHA256

0c4984c38a0bfc495429feaed5a6d483157efde661b360e31b685201ae96ca8d
SHA512

1ec0962e6a2e8234c93baeace93b8c145cb129309db0f8ab81659b1c0a775a8ff324820096935750eca24550f7726afc9dc28c561ab07298776c13f243786ee4
SSDEEP

96:7PQDCfv+RpECYboF5+wBGz1Gf+wjS5jwbUcMHtQRwqqicLbCbJtbbvbPMORO91ta:AXECYbKxu8QcMG

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  0c4984c38a0bfc495429feaed5a6d483157efde661b360e31b685201ae96ca8d.js
- Size
  
  11KB
- MD5
  
  71385aca859b81b3af062bfbe3f5b04e
- SHA1
  
  b81eac68a127a079d349f7d570a5f0c941ea6b1f
- SHA256
  
  0c4984c38a0bfc495429feaed5a6d483157efde661b360e31b685201ae96ca8d
- SHA512
  
  1ec0962e6a2e8234c93baeace93b8c145cb129309db0f8ab81659b1c0a775a8ff324820096935750eca24550f7726afc9dc28c561ab07298776c13f243786ee4
- SSDEEP
  
  96:7PQDCfv+RpECYboF5+wBGz1Gf+wjS5jwbUcMHtQRwqqicLbCbJtbbvbPMORO91ta:AXECYbKxu8QcMG
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution