JSDropper

JavaScript dropper. AES-256-CBC hardcoded key. terminateRelatedProcesses sandbox evasion. WMI PowerShell check. certutil decode chain. ADODB.Stream staging.

Threat Profile
Type Loader
Programming LanguageJavaScript
C2 ProtocolHTTP/HTTPS
First Seen2023
Targets Küresel
Purpose / Capabilities
  • Dropper/Loader
No C2 servers have been identified for this family yet.

Research Reports (1)

Critical

JSDropper REQNEWINQUIRY2026 -- Kurtarılan AES-CBC Anahtarı zral5sTyAJ6EJ4XJHkyB, AES IV ou1OB3BHxuPAynSPd6Kafg, terminateRelatedProcesses Sandbox Evasion Fonksiyonu, certutil PowerShell AES Çözücü Zinciri | Kritik

JS Dropper REQNEWINQUIRY2026PDF 328KB. AES-CBC kurtarilmis anahtar zral5sTyAJ6EJ4XJHkyB/9Mas7U3dnt6m9AamTkb6ls=. IV ou1OB3BHxuPAynSPd6Kafg==. terminateRelatedProcesses sandbox evasion. certutil PowerShell zinciri.

Read Report →