Overview

overview

5

Static

static

3

MpGear.dll

windows7-x64

1

MpGear.dll

windows10-2004-x64

1

Setup.exe

windows7-x64

Setup.exe

windows10-2004-x64

5

VBoxDDU.dll

windows7-x64

VBoxDDU.dll

windows10-2004-x64

1

en-US/Auto...eN.dll

windows7-x64

1

en-US/Auto...eN.dll

windows10-2004-x64

1

en-US/avicap32.dll

windows7-x64

1

en-US/avicap32.dll

windows10-2004-x64

1

engine/engine.js

windows7-x64

1

engine/engine.js

windows10-2004-x64

1

engine/mod...are.js

windows7-x64

1

engine/mod...are.js

windows10-2004-x64

1

engine/mod...ion.js

windows7-x64

1

engine/mod...ion.js

windows10-2004-x64

engine/mod...fig.js

windows7-x64

1

engine/mod...fig.js

windows10-2004-x64

1

engine/mod...mer.js

windows7-x64

1

engine/mod...mer.js

windows10-2004-x64

1

engine/mod...ile.js

windows7-x64

1

engine/mod...ile.js

windows10-2004-x64

1

engine/mod.../cn.js

windows7-x64

1

engine/mod.../cn.js

windows10-2004-x64

1

engine/mod.../en.js

windows7-x64

1

engine/mod.../en.js

windows10-2004-x64

1

engine/mod.../jp.js

windows7-x64

1

engine/mod.../jp.js

windows10-2004-x64

engine/mod...-BR.js

windows7-x64

1

engine/mod...-BR.js

windows10-2004-x64

1

engine/mod.../tc.js

windows7-x64

engine/mod.../tc.js

windows10-2004-x64

1

Analysis

  • max time kernel
    36s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 10:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    engine/modules/auth/middleware.js

  • Size

    6KB

  • MD5

    2cfc86281d65326de6d40ba937a405e9

  • SHA1

    349a086acb18099538e911d87721b9f17e1e074c

  • SHA256

    ed31c9a3037676a31484ae17a0b2ac3fd7658420d6d8c2fdcc4fdbd73f41ae21

  • SHA512

    6267877d2e5d145a717474148854cea7b1b4d523578ad9b07568c2fecf7e873b5e7178d80a4aa606b10a352820f6d258e5cf5debc6c433b22554f5197b47ce02

  • SSDEEP

    96:dfwpn2/11fLKkGmSrK9eEmnGAKBvqiWpvC32pplXbQCLoLd6dLi454hL0tR:dop2/eoCwvqbpn8L6dLi/hQD

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\engine\modules\auth\middleware.js
    1⤵
      PID:2372

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads