e4460dc20a3a9b45a43013e677f809fc2f8fd35a0b31dfaec7cb4670181c7754

Submit
Reports

Overview

overview

Static

static

Pegasus HV...ck.vbs

windows10-2004-x64

Pegasus HV...os.ps1

windows10-2004-x64

Pegasus HV...sh.ps1

windows10-2004-x64

Pegasus HV...hs.ps1

windows10-2004-x64

Pegasus HV...SA.ps1

windows10-2004-x64

Pegasus HV...ock.js

windows10-2004-x64

Pegasus HV...ck.exe

windows10-2004-x64

Pegasus HV...oxy.js

windows10-2004-x64

Pegasus HV...rmV.js

windows10-2004-x64

Pegasus HV...S_M.js

windows10-2004-x64

Pegasus HV...ll.ps1

windows10-2004-x64

Pegasus HV...per.js

windows10-2004-x64

Pegasus HV...nts.js

windows10-2004-x64

Pegasus HV...ner.js

windows10-2004-x64

Pegasus HV...or.vbs

windows10-2004-x64

Pegasus HV...er.vbs

windows10-2004-x64

Pegasus HV...em.vbs

windows10-2004-x64

Pegasus HV...ck.vbs

windows10-2004-x64

Pegasus HV...er.vbs

windows10-2004-x64

Pegasus HV...on.ps1

windows10-2004-x64

Pegasus HV...es.vbs

windows10-2004-x64

dll/Bouncy...to.dll

windows10-2004-x64

dll/Guna.UI2.dll

windows10-2004-x64

dll/IconExtractor.dll

windows10-2004-x64

dll/Newton...on.dll

windows10-2004-x64

dll/Vestri...ib.dll

windows10-2004-x64

dll/cGeoIp.dll

windows10-2004-x64

dll/dnlib.dll

windows10-2004-x64

dll/protobuf-net.dll

windows10-2004-x64

Analysis

max time kernel
110s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
31-03-2023 05:49

Sharing

Copy URL

Twitter E-mail

Static task

static1

agilenet

1 signatures

Behavioral task

behavioral1

Sample

Pegasus HVNC client/PegasusHVNCclient-main/MessagePackLib/MessagePack/MsgPack.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Aetos.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Ekinhsh.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Ektelesths.ps1

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/IMSA.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/PegSock.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Pegasus HVNC client/PegasusHVNCclient-main/Peg/Properties/crack.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/FrmReverseProxy.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PEGASUS/PEGASUS_HVNC/FrmV.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PEGASUS_M.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PeToShell.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/RenamingObfuscation/Classes/DecryptionHelper.js

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Diadyktio/Clients.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Diadyktio/Listener.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/HexEditor/HexEditor.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/ListViewColumnSorter.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/RegistryValueLstItem.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Metafora_Dedomenon/MsgPack.vbs

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Metafora_Dedomenon/Server.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Pegasus/Encryption.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Properties/Resources.vbs

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

dll/BouncyCastle.Crypto.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

dll/Guna.UI2.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

dll/IconExtractor.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

dll/Newtonsoft.Json.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

dll/Vestris.ResourceLib.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

dll/cGeoIp.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

dll/dnlib.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

dll/protobuf-net.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PEGASUS_M.js
Size

340KB
MD5

4657a88f8d188b03aa650000780b73ad
SHA1

462bd3d72baf66783777c7240fd4fc73235adf63
SHA256

cbb7af26163a36f6223789619d2736b556a4ae498f39f3f61c2a21e2585404ad
SHA512

b0e96ba624936e3193eba13892ef0f0b0ba31f5e4ede0673bcbb74d7f10ca245a704e72dd159224a3ebbe05037865a87fd5bcba0958d663c46050220b557344c
SSDEEP

1536:urW2Wbt55T0dd9ODa+AqH09ckRI5e7nUxHqjJ9k3SOAzGdDFYPiL:bt55T0tODa+dkfGdDePiL

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\Pegasus HVNC\PegasusHVNC-main\PEGASUS\Design\PEGASUS_M.js"
1⤵
PID:1072

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads