Overview

overview

8

Static

static

1

XibXPVV.js

windows7-x64

8

XibXPVV.js

windows10-2004-x64

8

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2023, 15:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    XibXPVV.js

  • Size

    793B

  • MD5

    86217902b53af3e28238e5ebe8ea3796

  • SHA1

    2ea58a142c5ab5d3a5af3a365652e1495b893234

  • SHA256

    daba105a50a80b66827fc9f6fbfe787773a6a2fc88ad97f62ffdd02f162f70e7

  • SHA512

    b03c1037af0c4b909de93c9eeb447b37cc5ea66981aee5be43f97fd6d8c7ad024f0fafa267e25d3c0c38d0ed3bbb4730cc71bb0d9c860d36af84cd693e3795f5

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 4 IoCs
  • Modifies system certificate store 2 TTPs 2 IoCs
    evasionspywaretrojan

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\XibXPVV.js
    1⤵
    • Blocklisted process makes network request
    • Modifies system certificate store
    PID:2164

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads