70ec5624f3d3b10e06cc21ff625d8871f81e4d5de1ee2c921a963df7a4015c58 | Triage

Sharing

General

Target

70ec5624f3d3b10e06cc21ff625d8871f81e4d5de1ee2c921a963df7a4015c58.js
Size

14KB
Sample

240821-s3w9mazfmq
MD5

f565069bbe97855d32a7e9858d4b8ef6
SHA1

d3344bd0537addf599ea6682c5871c65887888b0
SHA256

70ec5624f3d3b10e06cc21ff625d8871f81e4d5de1ee2c921a963df7a4015c58
SHA512

ae791a1cf92182dcc7c105204fca1f2e275daa8e1724d440d79f25e5111d56d7afa07290b88059238003f46b0b8e2ee0ecd989f07c44689ef2a4f7e64463d2d1
SSDEEP

96:Ulm1iYg+hW6LOQFLrIjHOZqlfKXq+OdhDidHclR7DewP3/vIkP0OqRozopEGv558:SO7hlsebzE5Pn4H63wC

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  70ec5624f3d3b10e06cc21ff625d8871f81e4d5de1ee2c921a963df7a4015c58.js
- Size
  
  14KB
- MD5
  
  f565069bbe97855d32a7e9858d4b8ef6
- SHA1
  
  d3344bd0537addf599ea6682c5871c65887888b0
- SHA256
  
  70ec5624f3d3b10e06cc21ff625d8871f81e4d5de1ee2c921a963df7a4015c58
- SHA512
  
  ae791a1cf92182dcc7c105204fca1f2e275daa8e1724d440d79f25e5111d56d7afa07290b88059238003f46b0b8e2ee0ecd989f07c44689ef2a4f7e64463d2d1
- SSDEEP
  
  96:Ulm1iYg+hW6LOQFLrIjHOZqlfKXq+OdhDidHclR7DewP3/vIkP0OqRozopEGv558:SO7hlsebzE5Pn4H63wC
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution