4daead502dfca41fa6e5789eb458e5bc60ed7da6c8af2229596e1e0697f50701 | Triage

Analysis

max time kernel
42s
max time network
45s
platform
windows7_x64
resource
win7-20220414-en
submitted
19-05-2022 02:23

Sharing

Report Analysis Logs

General

Target

vbc.exe
Size

1.0MB
MD5

9c57cf589c6ff051d2aec2bbaf515dfb
SHA1

846b8e1244b7a7e2cbddbd837c77708b6bb0bb32
SHA256

4daead502dfca41fa6e5789eb458e5bc60ed7da6c8af2229596e1e0697f50701
SHA512

2947df318501ce13e7b99cf65fc0f18db3086f6ac97727831ffdb253a28fdce3ce10d1d1998b80423d313ae5d375ad2f65ff9b3741774e2a3632de7862364a0e

Score

7^/10

Malware Config

Signatures

Uses the VBS compiler for execution 1 TTPs

Scripting
T1064

C:\Users\Admin\AppData\Local\Temp\vbc.exe
"C:\Users\Admin\AppData\Local\Temp\vbc.exe"
1⤵
PID:1068

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1068-54-0x0000000001330000-0x0000000001440000-memory.dmp

Filesize
1.1MB

Download
memory/1068-55-0x0000000075C51000-0x0000000075C53000-memory.dmp

Filesize
8KB

Download
memory/1068-56-0x0000000001250000-0x00000000012CC000-memory.dmp

Filesize
496KB

Download
memory/1068-57-0x00000000012D6000-0x00000000012E7000-memory.dmp

Filesize
68KB

Download