b28b4754bc963927936e61a14786e7d28e6c7447c2cc6b31bb9753d13c3d5fb7

Analysis

max time kernel
143s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
23/01/2024, 16:07 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6ffc4608d5728e7b6132ad02d696a750.js
Size

8KB
MD5

6ffc4608d5728e7b6132ad02d696a750
SHA1

6c9c9876bcefa18b1fbe2501bac955b3b4945ef7
SHA256

b28b4754bc963927936e61a14786e7d28e6c7447c2cc6b31bb9753d13c3d5fb7
SHA512

7970ac37561154dd9025c67b0deecb579330bcd09764464379c6af8ca7cce4c1aa4e98f80b4fafdd81c8a462ff5c5286c1f96f2daafd534522bf929e8659e82c
SSDEEP

192:13i/BLjfKOQTH+NkBuBqQqYRDj06OcKNQISOlX:13i/BLvQLrBuBqQqYRDjm

Score

1^/10

Malware Config

Signatures

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\6ffc4608d5728e7b6132ad02d696a750.js
1⤵
PID:3784

Network

DNS

209.205.72.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.205.72.20.in-addr.arpa

IN PTR

Response
DNS

200.254.1.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.254.1.23.in-addr.arpa

IN PTR

Response

200.254.1.23.in-addr.arpa

IN PTR

a23-1-254-200deploystaticakamaitechnologiescom
DNS

14.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.160.190.20.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

58.55.71.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

58.55.71.13.in-addr.arpa

IN PTR

Response
DNS

149.220.183.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

149.220.183.52.in-addr.arpa

IN PTR

Response
DNS

183.59.114.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

183.59.114.20.in-addr.arpa

IN PTR

Response
DNS

15.164.165.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

15.164.165.52.in-addr.arpa

IN PTR

Response
DNS

12.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

12.71.91.104.in-addr.arpa

IN PTR

Response

12.71.91.104.in-addr.arpa

IN PTR

a104-91-71-12deploystaticakamaitechnologiescom
DNS

57.110.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

57.110.18.2.in-addr.arpa

IN PTR

Response

57.110.18.2.in-addr.arpa

IN PTR

a2-18-110-57deploystaticakamaitechnologiescom
DNS

22.236.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.236.111.52.in-addr.arpa

IN PTR

Response
DNS

209.143.182.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.143.182.52.in-addr.arpa

IN PTR

Response

20.231.121.79:80

104 B
2

8.8.8.8:53

209.205.72.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

209.205.72.20.in-addr.arpa
8.8.8.8:53

200.254.1.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

200.254.1.23.in-addr.arpa
8.8.8.8:53

14.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

14.160.190.20.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
8.8.8.8:53

58.55.71.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

58.55.71.13.in-addr.arpa
8.8.8.8:53

149.220.183.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

149.220.183.52.in-addr.arpa
8.8.8.8:53

183.59.114.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

183.59.114.20.in-addr.arpa
8.8.8.8:53

15.164.165.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

15.164.165.52.in-addr.arpa
8.8.8.8:53

12.71.91.104.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

12.71.91.104.in-addr.arpa
8.8.8.8:53

57.110.18.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

57.110.18.2.in-addr.arpa
8.8.8.8:53

22.236.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

22.236.111.52.in-addr.arpa
8.8.8.8:53

209.143.182.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

209.143.182.52.in-addr.arpa

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.