JSDropper
JavaScript dropper. AES-256-CBC hardcoded key. terminateRelatedProcesses sandbox evasion. WMI PowerShell check. certutil decode chain. ADODB.Stream staging.
Threat Profile
Type
Loader
Programming LanguageJavaScript
C2 ProtocolHTTP/HTTPS
First Seen2023
Targets
Küresel
Purpose / Capabilities
- Dropper/Loader
No C2 servers have been identified for this family yet.
Research Reports (1)
JSDropper REQNEWINQUIRY2026 -- Kurtarılan AES-CBC Anahtarı zral5sTyAJ6EJ4XJHkyB, AES IV ou1OB3BHxuPAynSPd6Kafg, terminateRelatedProcesses Sandbox Evasion Fonksiyonu, certutil PowerShell AES Çözücü Zinciri | Kritik
JS Dropper REQNEWINQUIRY2026PDF 328KB. AES-CBC kurtarilmis anahtar zral5sTyAJ6EJ4XJHkyB/9Mas7U3dnt6m9AamTkb6ls=. IV ou1OB3BHxuPAynSPd6Kafg==. terminateRelatedProcesses sandbox evasion. certutil PowerShell zinciri.
Read Report →