6fc304a69cc4b9f306524ea3639b7bc252fa32ff719eb75895647da99454df37 | Triage

Submit
Reports

Overview

overview

1

Static

static

1

vaft-ublock-origin.js

windows7-x64

1

vaft-ublock-origin.js

windows10-2004-x64

1

Analysis

max time kernel
37s
max time network
39s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
14/06/2023, 20:06

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

vaft-ublock-origin.js

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

vaft-ublock-origin.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

vaft-ublock-origin.js
Size

44KB
MD5

0f47252c3d2b993e8a1fe1ff9ae51bbe
SHA1

7fe114709b57da86e4f708974db19b628209596c
SHA256

6fc304a69cc4b9f306524ea3639b7bc252fa32ff719eb75895647da99454df37
SHA512

7d49000cf72ffd060a3dd4a3f4a6ce85e91d1a3153f0a65534fc8ff12f255013fe00499cf9827c6d7596bc8af1a8e90b887f29bc4bc77ab85e66ed007047fcc8
SSDEEP

768:od6b7GbiNnwN2k+pcCbFBmBYGMiumOcVrLwcW8E1mLR:od6XG2NnwNr+pcCbWMisufo1mLR

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\vaft-ublock-origin.js
1⤵
PID:5068

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4804

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\vaft-ublock-origin.js"
1⤵
PID:4596

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy