623bac8dfcb4ea64bbd6f242310c689de0dd6b14c6a2499e3c8338f28afdb9c9 | Triage

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
03/05/2024, 15:27

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

test.wsf
Size

23KB
MD5

70e6ea02fbb98bb0edcbedbf91def843
SHA1

1218d6c2a15b287c4d5edcee2c1bcb8dd439cc17
SHA256

623bac8dfcb4ea64bbd6f242310c689de0dd6b14c6a2499e3c8338f28afdb9c9
SHA512

0d20105f250a2f39b6eddb4988843bc0c43cd0a00e1565f9217ff717af4418f02c724068a71a9f29cec5c812f611a0916ecfa3fb35496eb9b183b2e2fdce3e4c
SSDEEP

384:n6Krosw6Kros76Krosw6KrosG6Krosw6KrosR:n6Mpw6Mp76Mpw6MpG6Mpw6MpR

Score

8^/10

Malware Config

Signatures

Blocklisted process makes network request 2 IoCs

flow	pid	Process
3	2164	WScript.exe
7	2164	WScript.exe

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\test.wsf"
1⤵
- Blocklisted process makes network request
PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads