ab04d2892449c182c902028ab9a800f44daae107d9686a6f38c964d958246348 | Triage

Sharing

General

Target

ab04d2892449c182c902028ab9a800f44daae107d9686a6f38c964d958246348.js
Size

154KB
Sample

241002-bwwwvazgrp
MD5

14ad0b2a30e827ff25a2fddc34eec47b
SHA1

e634786a2e5cf2483e7cbe059d86d80a64f8eade
SHA256

ab04d2892449c182c902028ab9a800f44daae107d9686a6f38c964d958246348
SHA512

7e585a68f09129528f44568d15f995c2c61590607886a849b88d12adb669d8ca3bfcbd9fae9c94ba0e32ddbce073115342d76e4c00e01b7a993bdaba2a21176c
SSDEEP

3072:n5jme1Gzd9l/8geIJzPYL0d/X9rENLyYu4tPbPpf2M3RC/hifZk:VWzVkg3W0/5ENLy8bpb3RC/hifZk

Score

10^/10

execution

Malware Config

Targets

- Target
  
  ab04d2892449c182c902028ab9a800f44daae107d9686a6f38c964d958246348.js
- Size
  
  154KB
- MD5
  
  14ad0b2a30e827ff25a2fddc34eec47b
- SHA1
  
  e634786a2e5cf2483e7cbe059d86d80a64f8eade
- SHA256
  
  ab04d2892449c182c902028ab9a800f44daae107d9686a6f38c964d958246348
- SHA512
  
  7e585a68f09129528f44568d15f995c2c61590607886a849b88d12adb669d8ca3bfcbd9fae9c94ba0e32ddbce073115342d76e4c00e01b7a993bdaba2a21176c
- SSDEEP
  
  3072:n5jme1Gzd9l/8geIJzPYL0d/X9rENLyYu4tPbPpf2M3RC/hifZk:VWzVkg3W0/5ENLy8bpb3RC/hifZk
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2