Overview

overview

3

Static

static

1

圈子2008...in.vbs

windows7-x64

1

圈子2008...in.vbs

windows10-2004-x64

1

圈子2008...ex.vbs

windows7-x64

1

圈子2008...ex.vbs

windows10-2004-x64

1

圈子2008...lx.asp

windows7-x64

3

圈子2008...lx.asp

windows10-2004-x64

3

圈子2008...dd.asp

windows7-x64

3

圈子2008...dd.asp

windows10-2004-x64

3

圈子2008...dd.vbs

windows7-x64

1

圈子2008...dd.vbs

windows10-2004-x64

1

圈子2008...ve.asp

windows7-x64

3

圈子2008...ve.asp

windows10-2004-x64

3

圈子2008...in.asp

windows7-x64

3

圈子2008...in.asp

windows10-2004-x64

3

圈子2008...or.asp

windows7-x64

3

圈子2008...or.asp

windows10-2004-x64

3

圈子2008...ag.asp

windows7-x64

3

圈子2008...ag.asp

windows10-2004-x64

3

圈子2008...dd.vbs

windows7-x64

1

圈子2008...dd.vbs

windows10-2004-x64

1

圈子2008...ve.asp

windows7-x64

3

圈子2008...ve.asp

windows10-2004-x64

3

圈子2008...ex.vbs

windows7-x64

1

圈子2008...ex.vbs

windows10-2004-x64

1

圈子2008...ks.vbs

windows7-x64

1

圈子2008...ks.vbs

windows10-2004-x64

1

圈子2008...lx.vbs

windows7-x64

1

圈子2008...lx.vbs

windows10-2004-x64

1

圈子2008...ig.asp

windows7-x64

3

圈子2008...ig.asp

windows10-2004-x64

3

圈子2008...ok.vbs

windows7-x64

1

圈子2008...ok.vbs

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 04:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    圈子2008淘金版@www.dananshan.com/Admin/activitx/index.vbs

  • Size

    5KB

  • MD5

    704c7ae37a2ead66508e426d44145f66

  • SHA1

    d9de53f764ee38d4d867e71759444dd82a446edd

  • SHA256

    8d1cdf829810dd3669a01acf67a4b4f632b613104da6de7239881df7b9f9b897

  • SHA512

    9423231aab435bc42fb74ad1868ff9bad4b8d212066155f4c388d1656f97836792a01bbd79c351bd3f8951e0cc05d38b9b47d8c6fd777d485065e2cf0249b3e2

  • SSDEEP

    96:ZWpEGh0Ln6Gi00UBb1V98GwyM/R9+Xx1lM8oMHNpBW:mEain0ZUl1X8NujVLp8

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\WScript.exe
    "C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\圈子2008淘金版@www.dananshan.com\Admin\activitx\index.vbs"
    1⤵
      PID:2872

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads