e90ccb10c11357ae927575249587e072a953ea46e4ac4c344b04085b049eb1a1

Analysis

max time kernel
136s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
01-11-2022 01:10

Target

Which_sentence_has_proper_subject-verb_agreement (cisri).js
Size

67KB
MD5

984433f6717d38801650de9af37560a6
SHA1

137fe8c0d078c7114ce0085815a8f87c268457dc
SHA256

0adeb5f64831692f5d573e201a1af53161806388f0d2d33566fe5b36d4fe3e4a
SHA512

b5bb6850e09a5505d8bdab47e0995cd061fe685bdb419464b0c439994c7e0a8067b99a4613fe03001a95161973e864ccfc7a4f1e295a4ad626ec2cedfdf5b8df
SSDEEP

1536:J4YpdG1fwkduNtlvb6IurUN7hR9sV9+dmPQJ9nJAgaUX:IfwkduRb6IdhhR6nSaUX

Score

8^/10

Blocklisted process makes network request 3 IoCs

Script User-Agent 3 IoCs

Uses user-agent string associated with script host/environment.

description	flow	ioc
HTTP User-Agent header	38	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)
HTTP User-Agent header	33	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)
HTTP User-Agent header	36	Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\Which_sentence_has_proper_subject-verb_agreement (cisri).js"
1⤵
- Blocklisted process makes network request
PID:1932