Analysis

  • max time kernel
    65s
  • max time network
    65s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    07-07-2020 07:25

General

  • Target

    iupp malaca.vbs

  • Size

    1020KB

  • MD5

    6e2470016d6cd6d541859fde5eb9d0b7

  • SHA1

    8d32aa58f955db59caf994f0e608ec0cb86ae6d0

  • SHA256

    6a7dbeff87b0db6f63cfbfaa69b6ba2044d6312467a998bfc6e5996c04230d5f

  • SHA512

    c60a088b924b4f7ede7004138db81ac63384825de9c1535731e68a1390320b4c8d07ab2d7bf3c00c473bbb41f8e5545e48c0db737df639454de68280e16ed304

Score
8/10

Malware Config

Signatures

  • Blacklisted process makes network request 1 IoCs
  • Deletes itself 1 IoCs
  • Legitimate hosting services abused for malware hosting/C2 1 TTPs

Processes

  • C:\Windows\System32\WScript.exe
    "C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\iupp malaca.vbs"
    1⤵
    • Blacklisted process makes network request
    • Deletes itself
    PID:1008

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads