902d1398276f0dc0694321c409575f8b2c7495b92d712fc2fe57997160e4679a

Analysis

max time kernel
137s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
25/10/2022, 14:07

Target

Which_sentence_has_proper_subject-verb_agreement (hku).js
Size

67KB
MD5

337ea66a7626653a964be7f2a56e1625
SHA1

459f66efde8e258b2a299c485e1cb47866bf3538
SHA256

5034865bf2a088ab7dd32fe5fd79f3c2bbca06331c25a733721fc3b649a091e5
SHA512

2d3e85a553bd1b2135d974240d16214ab2e7c41525dc5f55fe3d3532a237929852225d902e4d0d6b9eda2ae75c582be5f7969e335230f9696e60b841a851ba36
SSDEEP

1536:84YIdztwk0fNtYVr29trUII8dxDi/8W+PLJ9vESAaUX:1twk0fGr29CB8dxGc2aUX

Score

8^/10

Blocklisted process makes network request 3 IoCs

Script User-Agent 3 IoCs

Uses user-agent string associated with script host/environment.

description	flow	ioc
HTTP User-Agent header	38	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)
HTTP User-Agent header	40	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)
HTTP User-Agent header	42	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\Which_sentence_has_proper_subject-verb_agreement (hku).js"
1⤵
- Blocklisted process makes network request
PID:812