cbd33d7ba3b8ef4562c696e1b70b5e71faded4cfb6b18b5f4c3d2eae20abf872 | Triage

Analysis

max time kernel
133s
max time network
140s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
26/04/2024, 14:21 UTC

Sharing

Report Analysis Logs

General

Target

NetflixCE V4/NetflixCE/autorun/pseudocodediagram.js
Size

56KB
MD5

49c105dc0f4e732802284180722747c2
SHA1

cdc575490b51a252202bb5e37f0536870dd3cca0
SHA256

43dae8cfaa2c16b3d94c748de250bba2e16e9789c8b2f3395cb6ed4f79e624c6
SHA512

b3a582e1fb4baf003f40262c888adf84041874e729a97d8cfaed581c84b7b3f5823dafa4249607d4e79b62aa30bc207632eca9522a0866edf1c57cfc8296efe7
SSDEEP

1536:SDN7O8gQVISPW3R89Mvybxj/kTdg4YXj2P:SDN7OiPW3W9MvybxjM/dP

Score

1^/10

Malware Config

Signatures

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\NetflixCE V4\NetflixCE\autorun\pseudocodediagram.js"
1⤵
PID:4400

Network

DNS

13.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.227.111.52.in-addr.arpa

IN PTR

Response
DNS

170.117.168.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

170.117.168.52.in-addr.arpa

IN PTR

Response

20.231.121.79:80

46 B
1

8.8.8.8:53

13.227.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

13.227.111.52.in-addr.arpa
8.8.8.8:53

170.117.168.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

170.117.168.52.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads