Overview

overview

1

Static

static

1

qux/action/load.ps1

windows7-x64

1

qux/action/load.ps1

windows10-2004-x64

1

qux/error.html

windows7-x64

1

qux/error.html

windows10-2004-x64

1

qux/footer.js

windows7-x64

1

qux/footer.js

windows10-2004-x64

1

qux/func/forum.ps1

windows7-x64

1

qux/func/forum.ps1

windows10-2004-x64

1

qux/func/f...min.js

windows7-x64

1

qux/func/f...min.js

windows10-2004-x64

1

qux/func/functions.js

windows7-x64

1

qux/func/functions.js

windows10-2004-x64

1

qux/func/ip2c/ip2c.js

windows7-x64

1

qux/func/ip2c/ip2c.js

windows10-2004-x64

1

qux/func/p...ode.js

windows7-x64

1

qux/func/p...ode.js

windows10-2004-x64

1

qux/func/shop.ps1

windows7-x64

1

qux/func/shop.ps1

windows10-2004-x64

1

qux/func/timthumb.ps1

windows7-x64

1

qux/func/timthumb.ps1

windows10-2004-x64

1

qux/func/t...ike.js

windows7-x64

1

qux/func/t...ike.js

windows10-2004-x64

1

qux/func/t...ror.js

windows7-x64

1

qux/func/t...ror.js

windows10-2004-x64

1

qux/func/t...css.js

windows7-x64

1

qux/func/t...css.js

windows10-2004-x64

1

qux/func/t...xed.js

windows7-x64

1

qux/func/t...xed.js

windows10-2004-x64

1

qux/func/t...ipt.js

windows7-x64

1

qux/func/t...ipt.js

windows10-2004-x64

1

qux/func/t...php.js

windows7-x64

1

qux/func/t...php.js

windows10-2004-x64

1

Analysis

  • max time kernel
    114s
  • max time network
    131s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231127-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-11-2023 20:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    qux/func/phpqrcode/phpqrcode.js

  • Size

    118KB

  • MD5

    5d6fa18048ed122bc94aec4f88b173d0

  • SHA1

    1a6c460c0421f2deb5a787efac907f748912e27d

  • SHA256

    291332fcc8d67e1bddb4253a7c26042d98250f0966af07b77cdc7f4d56b7bc36

  • SHA512

    27c458834c569c2e9a4d6209eec50354b15fd3a5df4e7d7286226c6188f080a4c92e600aad331e940ef887b40d69e1211652fb93c0382e8727514f8d92a52fb4

  • SSDEEP

    1536:Zwckp9Dxf0/0/0/3CwE/FoQ0vpm2vKUvP4k/vej3Sewbg9RgvDpD:vkIv3/63SewbbZ

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\qux\func\phpqrcode\phpqrcode.js
    1⤵
      PID:4148

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads