Overview

overview

10

Static

static

Document.lnk

windows7-x64

3

Document.lnk

windows10-2004-x64

3

all/soThink.bat

windows7-x64

1

all/soThink.bat

windows10-2004-x64

1

all/thinkThink.dll

windows7-x64

10

all/thinkThink.dll

windows10-2004-x64

10

all/weHave.js

windows7-x64

3

all/weHave.js

windows10-2004-x64

1

Analysis

  • max time kernel
    12s
  • max time network
    48s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2022 19:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    all/weHave.js

  • Size

    196B

  • MD5

    7ba4d2a27ec678f4bbb990d5405191eb

  • SHA1

    c8291a41346893684317135154c12f3fe69ef1f5

  • SHA256

    897325b6f7b3ea4571b454befd3f2c3aac8bf60f86d961973c83905df0e2065c

  • SHA512

    c8c0c3f3368eb90ad3fe41594895aa9e3a530caa3ae1451f812568b9c38434217a981f2a3d193bb69428b8e0c5fe65201cf9528dd5853f4d0ea6d78452ee5497

Score
3/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\all\weHave.js
    1⤵
      PID:912

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/912-54-0x000007FEFC341000-0x000007FEFC343000-memory.dmp

      Filesize

      8KB

      Download