Overview

overview

10

Static

static

10

shell-bot/22

ubuntu-18.04-amd64

7

shell-bot/a.out

ubuntu-18.04-amd64

1

shell-bot/cfs

ubuntu-18.04-amd64

7

shell-bot/cfs

debian-9-armhf

7

shell-bot/cfs

debian-9-mips

7

shell-bot/cfs

debian-9-mipsel

1

shell-bot/...SE.vbs

windows7-x64

1

shell-bot/...SE.vbs

windows10-2004-x64

1

shell-bot/...rt.vbs

windows7-x64

1

shell-bot/...rt.vbs

windows10-2004-x64

1

shell-bot/...es.vbs

windows7-x64

1

shell-bot/...es.vbs

windows10-2004-x64

1

shell-bot/...Config

ubuntu-18.04-amd64

3

shell-bot/...Config

debian-9-armhf

1

shell-bot/...Config

debian-9-mips

3

shell-bot/...Config

debian-9-mipsel

3

shell-bot/...t.so:.

ubuntu-18.04-amd64

1

shell-bot/...gen.sh

ubuntu-18.04-amd64

1

shell-bot/...gen.sh

debian-9-armhf

1

shell-bot/...gen.sh

debian-9-mips

1

shell-bot/...gen.sh

debian-9-mipsel

1

shell-bot/...ig.vbs

windows7-x64

1

shell-bot/...ig.vbs

windows10-2004-x64

1

shell-bot/...re.vbs

windows7-x64

1

shell-bot/...re.vbs

windows10-2004-x64

1

shell-bot/...ngelog

ubuntu-18.04-amd64

3

shell-bot/...ngelog

debian-9-armhf

1

shell-bot/...ngelog

debian-9-mips

shell-bot/...ngelog

debian-9-mipsel

1

shell-bot/...nstall

ubuntu-18.04-amd64

1

shell-bot/...nstall

debian-9-armhf

1

shell-bot/...nstall

debian-9-mips

1

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    14-11-2023 07:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    shell-bot/ftp-server/Unreal3.2.10.2/config.vbs

  • Size

    30KB

  • MD5

    ca82dc5136ff1275cf68bbb1de152343

  • SHA1

    c2512e6fc9563a7585f68c994bf76c35802d5343

  • SHA256

    13aea7cf16b42ba877bba5b72dcab7eebaebf1444cb7b2120bf73bfd9bcc4a36

  • SHA512

    e32e5e90d2b3320d1b9164fa0b9541cd87c3bf80ff7a1a8461418940a99985900b2381e1efb607c55b0d6f22c324eb4921d8ca187c33d351693d253cfa77269e

  • SSDEEP

    768:zx9sUAthRp+Wy9bjpnXWIOjV/NNa6JJsgUqR:zx9sXthRi9/szjV/FJJsgUqR

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\WScript.exe
    "C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\shell-bot\ftp-server\Unreal3.2.10.2\config.vbs"
    1⤵
      PID:2028

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads