Overview

overview

8

Static

static

3

nmap-7.93-setup.exe

windows10-2004-x64

8

Uninstall.exe

windows10-2004-x64

4

libcrypto-3.dll

windows10-2004-x64

3

libssh2.dll

windows10-2004-x64

3

libssl-3.dll

windows10-2004-x64

1

ncat.exe

windows10-2004-x64

1

ndiff.exe

windows10-2004-x64

1

nmap.exe

windows10-2004-x64

1

nping.exe

windows10-2004-x64

1

nse_main.js

windows10-2004-x64

1

nselib/afp.js

windows10-2004-x64

1

nselib/ajp.js

windows10-2004-x64

1

nselib/amqp.js

windows10-2004-x64

1

nselib/anyconnect.js

windows10-2004-x64

1

nselib/asn1.js

windows10-2004-x64

1

nselib/base32.js

windows10-2004-x64

1

nselib/base64.js

windows10-2004-x64

1

nselib/bitcoin.js

windows10-2004-x64

1

nselib/bittorrent.js

windows10-2004-x64

1

nselib/bjnp.js

windows10-2004-x64

1

nselib/brute.js

windows10-2004-x64

1

nselib/coap.js

windows10-2004-x64

1

nselib/comm.js

windows10-2004-x64

1

nselib/creds.js

windows10-2004-x64

1

nselib/cvs.js

windows10-2004-x64

1

nselib/dat...nts.js

windows10-2004-x64

1

nselib/dat...nts.js

windows10-2004-x64

1

nselib/dat...cis.js

windows10-2004-x64

1

nselib/dat...ers.js

windows10-2004-x64

1

nselib/datafiles.js

windows10-2004-x64

1

zenmap.exe

windows10-2004-x64

3

zlibwapi.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-02-2024 21:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    nselib/amqp.js

  • Size

    10KB

  • MD5

    49dbeacb9d5bb33fe18b52b44dcf0073

  • SHA1

    8dc027c6c5f8b1974f0c1f4424214fee5192b142

  • SHA256

    6955b1efbfb2cf41a7f00284a168ebace551730ed5ffa7fb12f19dcae2f35bdf

  • SHA512

    b8cc730c7a294117219b1b06d12901b391a36e048f2bb2dff86d2f2e2d1e0ee802bb2c6580c3bbaaa7bcc790e36e5a2b8c4884fe55dfc360f7662d8499a292a9

  • SSDEEP

    192:PsKVVQ4a0wGF6ETAmEuZtjg4jCQ6jWcyluJujoztYxqroFO6h7bQgNerCFDQNL3B:pS4aKtgfK7X8cOnX

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\nselib\amqp.js
    1⤵
      PID:3164

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads