Overview

overview

8

Static

static

3

5e94109129...18.exe

windows7-x64

8

5e94109129...18.exe

windows10-2004-x64

8

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDIR/nsSCM.dll

windows7-x64

3

$PLUGINSDIR/nsSCM.dll

windows10-2004-x64

3

$PROGRAMFI...4D.exe

windows7-x64

1

$PROGRAMFI...4D.exe

windows10-2004-x64

1

$PROGRAMFI...rv.exe

windows7-x64

1

$PROGRAMFI...rv.exe

windows10-2004-x64

1

$PROGRAMFI...n.html

windows7-x64

1

$PROGRAMFI...n.html

windows10-2004-x64

1

$PROGRAMFI...ack.js

windows7-x64

3

$PROGRAMFI...ack.js

windows10-2004-x64

3

$PROGRAMFI...ent.js

windows7-x64

3

$PROGRAMFI...ent.js

windows10-2004-x64

3

$PROGRAMFI...oud.js

windows7-x64

3

$PROGRAMFI...oud.js

windows10-2004-x64

3

$PROGRAMFI...up.exe

windows7-x64

3

$PROGRAMFI...up.exe

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PROGRAMFI...IE.exe

windows7-x64

1

$PROGRAMFI...IE.exe

windows10-2004-x64

1

$SYSDIR/PAZU.dll

windows7-x64

1

$SYSDIR/PAZU.dll

windows10-2004-x64

1

$SYSDIR/PAZUVista.exe

windows7-x64

1

$SYSDIR/PAZUVista.exe

windows10-2004-x64

1

$SYSDIR/pa...st.exe

windows7-x64

1

$SYSDIR/pa...st.exe

windows10-2004-x64

1

$PROGRAMFI...om.dll

windows7-x64

3

$PROGRAMFI...om.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 10:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PROGRAMFILES/PAZUƴӡ/js/pazucloud.js

  • Size

    32KB

  • MD5

    ecbeec6a5ad90c0b40791b2a5c6c3af6

  • SHA1

    7201cd7aee832c6a815cdc2b7df399fa545037fd

  • SHA256

    01b73c70a745daf6b6ff99d9eae9da908dfb5c7c5f5acc4a719029e1a30d4070

  • SHA512

    d4dccf480b2f563b3acd471896995538a76cb2dec9d4b17561cbc7c6b9beb11834e37b9ac8c640ecee618fef3b8d0cf89ddb6bf77cfc9f51831c14b26e8f7db7

  • SSDEEP

    384:ww6D8dmZNEErmFWG67/26eEM695ahf3Dos+Uj3+AwaNISaECZQyp9o4B6aXQAy2u:ww6Vp/P9sLl+q+AwcgmKtBDd+

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\$PROGRAMFILES\PAZUƴӡ\js\pazucloud.js
    1⤵
      PID:2884

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads