Overview

overview

10

Static

static

1

sample.js

windows7-x64

10

sample.js

windows10-2004-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-10-2024 08:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.js

  • Size

    15KB

  • MD5

    9c59057e35d4209fac0bb09c50aeda85

  • SHA1

    4efd9657e881f16e3db3041b49ff4bbe2e877ce1

  • SHA256

    c2480e2a74a9154bce57bf5be76ee695f484394c4dd74cf1412fc075ad4d0199

  • SHA512

    6f36acb254f9c837fd608938a0ae337f1fafc5c19e5446be9c24eedf8bd640623ade6623985e9833175f26fe16b1071196dc77ce7d66793d20221678c9862f5a

  • SSDEEP

    384:VzPAwNXah5c7xIJrCobwCvVFpw4UMa8Ua3yITwPhvcYXDuH2TTZLIQjFgdtJ1W0F:BPA0Xao76JCobwCvVFpw4UMxfyITwPh2

Score
10/10
vjw0rmexecutiontrojanworm

Malware Config

Signatures

  • Vjw0rm

    Vjw0rm is a remote access trojan written in JavaScript.

    trojanwormvjw0rm
  • Blocklisted process makes network request 16 IoCs
  • Command and Scripting Interpreter: JavaScript 1 TTPs
    execution

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\sample.js
    1⤵
    • Blocklisted process makes network request
    PID:2136

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads