Overview

overview

8

Static

static

1

docu_DF631...4_1.js

windows7-x64

8

docu_DF631...4_1.js

windows10-2004-x64

8

docu_DF631...4_2.js

windows7-x64

8

docu_DF631...4_2.js

windows10-2004-x64

8

docu_DF631...4_3.js

windows7-x64

8

docu_DF631...4_3.js

windows10-2004-x64

8

Analysis

  • max time kernel
    53s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2023 12:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    docu_DF631_Jun_14_2.js

  • Size

    22KB

  • MD5

    c6c69d731f0d8972ad9c949054fe3a61

  • SHA1

    c5d8530883a26074eea3bcaee046930710b70c53

  • SHA256

    b0deea498617139a91f4fa0c43645268d0cdb0e5e7c19f31957c4708b7675875

  • SHA512

    57f4220019e12d21a95fa4d1fc35cba6cf2f034c4663959c6b6dccbab93c9f5fd75f634aa6ef9e72e5ac1b11d11e28c4789bcfc9b6ccc1c8eacdc5529217ad49

  • SSDEEP

    384:IlxwNHnWmEwxhJyyzgZT7yOjOt4kmtd70Sft:IlxwtWpwM9yV2d

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 3 IoCs

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\docu_DF631_Jun_14_2.js
    1⤵
    • Blocklisted process makes network request
    PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads