Analysis
-
max time kernel
148s -
max time network
145s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
10/01/2024, 11:18 UTC
Static task
static1
Behavioral task
behavioral1
Sample
506ab882c29aebc2ade008554b3a9e94.js
Resource
win7-20231129-en
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
506ab882c29aebc2ade008554b3a9e94.js
Resource
win10v2004-20231215-en
0 signatures
150 seconds
General
-
Target
506ab882c29aebc2ade008554b3a9e94.js
-
Size
265KB
-
MD5
506ab882c29aebc2ade008554b3a9e94
-
SHA1
7d72b042c9fae6802b79a8d2d058bd6db79ab3a1
-
SHA256
da394695f6cafafb0ea0975952fcce9482a26f84fc6bae6a09032b98735fa802
-
SHA512
86e20521a23edc3cc087728e3adeb648460a8ee596860dc8801ba8a609016b1d543e23c06a7c2c3e06fc12ae1b6a3ae73924b45a9e1ec6dd9419904710952929
-
SSDEEP
6144:d7yndQM81/rO3XVAi24CLSX9nDYV3IB7l4Xv:du78E3XVAiXCLSGVQ7l4f
Score
1/10
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Request146.78.124.51.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request19.177.190.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request95.221.229.192.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request95.221.229.192.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request55.36.223.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request241.154.82.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request59.128.231.4.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request59.128.231.4.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request0.204.248.87.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request0.204.248.87.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Requesttse1.mm.bing.netIN AResponsetse1.mm.bing.netIN CNAMEmm-mm.bing.net.trafficmanager.netmm-mm.bing.net.trafficmanager.netIN CNAMEdual-a-0001.a-msedge.netdual-a-0001.a-msedge.netIN A204.79.197.200dual-a-0001.a-msedge.netIN A13.107.21.200
-
Remote address:8.8.8.8:53Requesttse1.mm.bing.netIN A
-
Remote address:8.8.8.8:53Request211.178.17.96.in-addr.arpaIN PTRResponse211.178.17.96.in-addr.arpaIN PTRa96-17-178-211deploystaticakamaitechnologiescom
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
52 B 1
-
-
-
-
-
-
-
-
-
-
138 B 2.4kB 3 2
-
-
2.4kB 59.5kB 47 46
-
615 B 7.6kB 9 8
-
615 B 7.6kB 9 8
-
615 B 7.6kB 9 8
-
615 B 7.6kB 9 8
-
2.5kB 1.9kB 6 6
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
282 B 2.8kB 6 4
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
72 B 158 B 1 1
DNS Request
146.78.124.51.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
19.177.190.20.in-addr.arpa
-
146 B 144 B 2 1
DNS Request
95.221.229.192.in-addr.arpa
DNS Request
95.221.229.192.in-addr.arpa
-
71 B 157 B 1 1
DNS Request
55.36.223.20.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
241.154.82.20.in-addr.arpa
-
142 B 157 B 2 1
DNS Request
59.128.231.4.in-addr.arpa
DNS Request
59.128.231.4.in-addr.arpa
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
142 B 2
DNS Request
0.204.248.87.in-addr.arpa
DNS Request
0.204.248.87.in-addr.arpa
-
-
-
124 B 173 B 2 1
DNS Request
tse1.mm.bing.net
DNS Request
tse1.mm.bing.net
DNS Response
204.79.197.20013.107.21.200
-
-
-
-
72 B 137 B 1 1
DNS Request
211.178.17.96.in-addr.arpa
-
-