95035356cb0cdb2629c0042876f6aa2bb42e45ed30f92ad7e2263574b5e464cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

95035356cb0cdb2629c0042876f6aa2bb42e45ed30f92ad7e2263574b5e464cc.js
Size

12KB
Sample

240821-ta8ydsxdng
MD5

9c68bbd9d65e07b98e83587ee8f5b8c2
SHA1

9c39306de91381fa00f9430d69a26289b65d74f8
SHA256

95035356cb0cdb2629c0042876f6aa2bb42e45ed30f92ad7e2263574b5e464cc
SHA512

972e658f8f960394c6d4aef994670de971ffb40f8424b3e61d898cd9e9823fcf823e2395f5d804d2be082125c88b93f324ba1b60d086c6e5ec27e86579ef3533
SSDEEP

192:2BnacFF+F7+X+9nHaCn84nXBhmE5Bc6rvZ8bxcohKsl73zT7T3zE5E9ylDo8orys:2B7FQ5+O9n6CntdQh+KjdQh9rDhOoy

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  95035356cb0cdb2629c0042876f6aa2bb42e45ed30f92ad7e2263574b5e464cc.js
- Size
  
  12KB
- MD5
  
  9c68bbd9d65e07b98e83587ee8f5b8c2
- SHA1
  
  9c39306de91381fa00f9430d69a26289b65d74f8
- SHA256
  
  95035356cb0cdb2629c0042876f6aa2bb42e45ed30f92ad7e2263574b5e464cc
- SHA512
  
  972e658f8f960394c6d4aef994670de971ffb40f8424b3e61d898cd9e9823fcf823e2395f5d804d2be082125c88b93f324ba1b60d086c6e5ec27e86579ef3533
- SSDEEP
  
  192:2BnacFF+F7+X+9nHaCn84nXBhmE5Bc6rvZ8bxcohKsl73zT7T3zE5E9ylDo8orys:2B7FQ5+O9n6CntdQh+KjdQh9rDhOoy
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution