Overview

overview

10

Static

static

1

Remittance-634731.js

windows7-x64

10

Remittance-634731.js

windows10-2004-x64

3

Analysis

  • max time kernel
    0s
  • max time network
    74s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09-01-2024 15:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Remittance-634731.js

  • Size

    27KB

  • MD5

    511f6a9de220c99adf7e2e03a4e48886

  • SHA1

    7e3c217e99f7bdd44c2e760feaf413cb3a7736fb

  • SHA256

    2a830c7923253031907c1dd34c4a9532c1f53e8fe7f6a3c8359a0e93ef4b216e

  • SHA512

    8fe6e672872a208e9cac950856c1afa4cdb7fc496cc67531a98322fed1f1b83b1b7b5ce7f5a702b56197c853f0bf09deb5e1958b4369ca01cb42c401fdb4c090

  • SSDEEP

    768:BIa7X/aqtEJfke022Fb+wGcrLQfpds+TbGKRRcpX:qabledke0HFbpGoLQfs+TbGORcpX

Score
3/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\Remittance-634731.js
    1⤵
      PID:2852
      • C:\Windows\System32\schtasks.exe
        "C:\Windows\System32\schtasks.exe" /create /sc minute /mo 30 /tn Skype /tr "C:\Users\Admin\AppData\Roaming\Remittance-634731.js
        2⤵
        • Creates scheduled task(s)
        PID:3036
      • C:\Windows\System32\wscript.exe
        "C:\Windows\System32\wscript.exe" //B "C:\Users\Admin\AppData\Roaming\PhOPzJgSgd.js"
        2⤵
          PID:4916

      Network

      MITRE ATT&CK Enterprise v15

      Replay Monitor

      Loading Replay Monitor...

      Downloads