d69a4ac8bfe22dba19de78fdc31c1d13b6e1b57ffece505630a9c6becabbae2f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

shell-bot/22

ubuntu-18.04-amd64

7

shell-bot/a.out

ubuntu-18.04-amd64

1

shell-bot/cfs

ubuntu-18.04-amd64

7

shell-bot/cfs

debian-9-armhf

7

shell-bot/cfs

debian-9-mips

7

shell-bot/cfs

debian-9-mipsel

1

shell-bot/...SE.vbs

windows7-x64

1

shell-bot/...SE.vbs

windows10-2004-x64

1

shell-bot/...rt.vbs

windows7-x64

1

shell-bot/...rt.vbs

windows10-2004-x64

1

shell-bot/...es.vbs

windows7-x64

1

shell-bot/...es.vbs

windows10-2004-x64

1

shell-bot/...Config

ubuntu-18.04-amd64

3

shell-bot/...Config

debian-9-armhf

1

shell-bot/...Config

debian-9-mips

3

shell-bot/...Config

debian-9-mipsel

3

shell-bot/...t.so:.

ubuntu-18.04-amd64

1

shell-bot/...gen.sh

ubuntu-18.04-amd64

1

shell-bot/...gen.sh

debian-9-armhf

1

shell-bot/...gen.sh

debian-9-mips

1

shell-bot/...gen.sh

debian-9-mipsel

1

shell-bot/...ig.vbs

windows7-x64

1

shell-bot/...ig.vbs

windows10-2004-x64

1

shell-bot/...re.vbs

windows7-x64

1

shell-bot/...re.vbs

windows10-2004-x64

1

shell-bot/...ngelog

ubuntu-18.04-amd64

3

shell-bot/...ngelog

debian-9-armhf

1

shell-bot/...ngelog

debian-9-mips

shell-bot/...ngelog

debian-9-mipsel

1

shell-bot/...nstall

ubuntu-18.04-amd64

1

shell-bot/...nstall

debian-9-armhf

1

shell-bot/...nstall

debian-9-mips

1

Analysis

max time kernel
109s
max time network
195s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
14/11/2023, 07:28

Sharing

Static task

static1

upx miner xmrig

3 signatures

Behavioral task

behavioral1

Sample

shell-bot/22

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

shell-bot/a.out

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

shell-bot/cfs

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

shell-bot/cfs

Resource

debian9-armhf-20231026-en

debian-9-armhf

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

shell-bot/cfs

Resource

debian9-mipsbe-20231026-en

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

shell-bot/cfs

Resource

debian9-mipsel-20231026-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

shell-bot/ftp-server/Unreal3.2.10.2/.RELEASE.vbs

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

shell-bot/ftp-server/Unreal3.2.10.2/.RELEASE.vbs

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

shell-bot/ftp-server/Unreal3.2.10.2/.bugreport.vbs

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

shell-bot/ftp-server/Unreal3.2.10.2/.bugreport.vbs

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Changes.vbs

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Changes.vbs

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Config

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Config

Resource

debian9-armhf-20231026-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Config

Resource

debian9-mipsbe-20231026-en

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

shell-bot/ftp-server/Unreal3.2.10.2/Config

Resource

debian9-mipsel-20231026-en

debian-9-mipsel

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

shell-bot/ftp-server/Unreal3.2.10.2/GCONV_PATH=./pwnkit.so:.

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

shell-bot/ftp-server/Unreal3.2.10.2/autogen.sh

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

shell-bot/ftp-server/Unreal3.2.10.2/autogen.sh

Resource

debian9-armhf-20231026-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

shell-bot/ftp-server/Unreal3.2.10.2/autogen.sh

Resource

debian9-mipsbe-20231026-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

shell-bot/ftp-server/Unreal3.2.10.2/autogen.sh

Resource

debian9-mipsel-20231026-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

shell-bot/ftp-server/Unreal3.2.10.2/config.vbs

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

shell-bot/ftp-server/Unreal3.2.10.2/config.vbs

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

shell-bot/ftp-server/Unreal3.2.10.2/configure.vbs

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

shell-bot/ftp-server/Unreal3.2.10.2/configure.vbs

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

shell-bot/ftp-server/Unreal3.2.10.2/createchangelog

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

shell-bot/ftp-server/Unreal3.2.10.2/createchangelog

Resource

debian9-armhf-20231026-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

shell-bot/ftp-server/Unreal3.2.10.2/createchangelog

Resource

debian9-mipsbe-20231026-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

shell-bot/ftp-server/Unreal3.2.10.2/createchangelog

Resource

debian9-mipsel-20231026-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

shell-bot/ftp-server/Unreal3.2.10.2/curlinstall

Resource

ubuntu1804-amd64-20231026-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

shell-bot/ftp-server/Unreal3.2.10.2/curlinstall

Resource

debian9-armhf-20231026-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

shell-bot/ftp-server/Unreal3.2.10.2/curlinstall

Resource

debian9-mipsbe-20231026-en

debian-9-mips

0 signatures

150 seconds

Report Analysis Logs

General

Target

shell-bot/ftp-server/Unreal3.2.10.2/.RELEASE.vbs
Size

5KB
MD5

d18b778062e27a20795bbdd6f646eb4d
SHA1

633252a8be46e2bf279d54420bf2861d2e73ae1d
SHA256

f3f194e3daf8273ec11a0089104d1bc92457193f2c1ca59fb4bc34ce016e425e
SHA512

04c55e9bffcd55e4768a87dd975cafc5e4ad1e13b1100542aaf7fd09b66283d65b94ec6fffbbefaae609150e8d0d6366f36d1234be6e241010a8af8b2e426d51
SSDEEP

96:Koi5NGNEUvAfKWEb6RXqVQZaJ0rp39zJYWTU18kopLhkIPDP6dcpXWMkG8XBlZaM:20z6XvNl5BOoFTPOqXWMkG8xZ

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\shell-bot\ftp-server\Unreal3.2.10.2\.RELEASE.vbs"
1⤵
PID:4860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy