Malware Analysis Report

2024-11-30 20:56

Sample ID 220817-t3y9naaahr
Target Vancouver_police_union_collective_agreement (gsc).js
SHA256 5d17a080294b9ccfb21bccce5b95aee10adabd0467ce54d911b75897945c666f
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

5d17a080294b9ccfb21bccce5b95aee10adabd0467ce54d911b75897945c666f

Threat Level: No (potentially) malicious behavior was detected

The file Vancouver_police_union_collective_agreement (gsc).js was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary

N/A

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-08-17 16:35

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-08-17 16:35

Reported

2022-08-17 16:40

Platform

win10-20220812-en

Max time kernel

49s

Max time network

62s

Command Line

wscript.exe "C:\Users\Admin\AppData\Local\Temp\Vancouver_police_union_collective_agreement (gsc).js"

Signatures

N/A

Processes

C:\Windows\system32\wscript.exe

wscript.exe "C:\Users\Admin\AppData\Local\Temp\Vancouver_police_union_collective_agreement (gsc).js"

Network

Country Destination Domain Proto
US 52.168.112.66:443 tcp
US 93.184.221.240:80 tcp

Files

N/A