f8657757d3f25d577ddbfe50f5a3853751ff786931e5a104f727b901b2c45995 | Triage

Submit
Reports

Overview

overview

1

Static

static

1

ad/indexad.js

windows7-x64

1

ad/indexad.js

windows10-2004-x64

1

ad/moviead.js

windows7-x64

1

ad/moviead.js

windows10-2004-x64

1

ad/playad.js

windows7-x64

1

ad/playad.js

windows10-2004-x64

1

ad/tonglan.js

windows7-x64

1

ad/tonglan.js

windows10-2004-x64

1

ad/新云软件.url

windows7-x64

1

ad/新云软件.url

windows10-2004-x64

1

admin/Coll...ml.vbs

windows7-x64

1

admin/Coll...ml.vbs

windows10-2004-x64

1

admin/Coll...ax.vbs

windows7-x64

1

admin/Coll...ax.vbs

windows10-2004-x64

1

admin/coll...ng.vbs

windows7-x64

1

admin/coll...ng.vbs

windows10-2004-x64

1

admin/coll...ie.vbs

windows7-x64

1

admin/coll...ie.vbs

windows10-2004-x64

1

admin/coll...ng.vbs

windows7-x64

1

admin/coll...ng.vbs

windows10-2004-x64

1

admin/coll...ing.js

windows7-x64

1

admin/coll...ing.js

windows10-2004-x64

1

admin/coll...on.vbs

windows7-x64

1

admin/coll...on.vbs

windows10-2004-x64

1

admin/coll...pe.vbs

windows7-x64

1

admin/coll...pe.vbs

windows10-2004-x64

1

admin/coll...on.vbs

windows7-x64

1

admin/coll...on.vbs

windows10-2004-x64

1

admin/edit...ct.htm

windows7-x64

1

admin/edit...ct.htm

windows10-2004-x64

1

admin/edit...ct.htm

windows7-x64

1

admin/edit...ct.htm

windows10-2004-x64

1

Analysis

max time kernel
150s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
12-03-2024 18:26

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ad/indexad.js

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad/indexad.js

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

ad/moviead.js

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

ad/moviead.js

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

ad/playad.js

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

ad/playad.js

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

ad/tonglan.js

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

ad/tonglan.js

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

ad/新云软件.url

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

ad/新云软件.url

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

admin/CollectingXml.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

admin/CollectingXml.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

admin/CollectingXmlAjax.vbs

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

admin/CollectingXmlAjax.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

admin/collecting/admin_collecting.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

admin/collecting/admin_collecting.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

admin/collecting/admin_collecting_movie.vbs

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

admin/collecting/admin_collecting_movie.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

admin/collecting/collecting.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

admin/collecting/collecting.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

admin/collecting/collecting.js

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

admin/collecting/collecting.js

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

admin/collecting/collecting_cregion.vbs

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

admin/collecting/collecting_cregion.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

admin/collecting/collecting_ctype.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

admin/collecting/collecting_ctype.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

admin/collecting/collecting_function.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

admin/collecting/collecting_function.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

admin/editor/FontFaceSelect.htm

Resource

win7-20240215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral30

Sample

admin/editor/FontFaceSelect.htm

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral31

Sample

admin/editor/FontSizeSelect.htm

Resource

win7-20240220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral32

Sample

admin/editor/FontSizeSelect.htm

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

ad/tonglan.js
Size

40B
MD5

cf3ff1214fdc6fef1c8411775ee360dd
SHA1

564c98025cd51f477a4522b686954c107c4fcdf0
SHA256

43ca099564011643f953945ceff6aa1151134e1fa14084095aaf28c6948f4779
SHA512

9286b911a2b1d6e04ea034d37eab77973e4855b88f5db310758ac8f8e7c148ef99a51b943e4af341d0f52d266747a86f4d644859eba1a4f22002cad8bed5fe22

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\ad\tonglan.js
1⤵
PID:4804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy