Overview

overview

8

Static

static

3

65975f0ec8...18.exe

windows7-x64

8

65975f0ec8...18.exe

windows10-2004-x64

4

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Tools/modu...rt.hta

windows7-x64

3

Tools/modu...rt.hta

windows10-2004-x64

3

Tools/run.hta

windows7-x64

8

Tools/run.hta

windows10-2004-x64

1

config.js

windows7-x64

3

config.js

windows10-2004-x64

3

drp.js

windows7-x64

3

drp.js

windows10-2004-x64

3

js/soft.js

windows7-x64

3

js/soft.js

windows10-2004-x64

3

languages/ar.js

windows7-x64

3

languages/ar.js

windows10-2004-x64

3

languages/az.js

windows7-x64

3

languages/az.js

windows10-2004-x64

3

languages/be.js

windows7-x64

3

languages/be.js

windows10-2004-x64

3

languages/bg.js

windows7-x64

3

languages/bg.js

windows10-2004-x64

3

languages/bn.js

windows7-x64

3

languages/bn.js

windows10-2004-x64

3

languages/ca.js

windows7-x64

3

languages/ca.js

windows10-2004-x64

3

languages/cs.js

windows7-x64

3

languages/cs.js

windows10-2004-x64

3

languages/de.js

windows7-x64

3

languages/de.js

windows10-2004-x64

3

languages/el.js

windows7-x64

3

languages/el.js

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    drp.js

  • Size

    3.4MB

  • MD5

    5f388dd7663808c1c9d060fda99ea4e2

  • SHA1

    02d151571871d251ac27679a212dd1977e4b865c

  • SHA256

    9780da3ec181f013488f93b0385b1dec1087794c5eac63e11a402877626f1987

  • SHA512

    6060fdcf90f4250f3d3b7ee19d31ef8ed1c7c2d9c825374906a2602d5706cee3ec3a206e30f0556d70d1dd0798edfa29c339f7102606e3d4fea77e08456cfacb

  • SSDEEP

    49152:DhMKu4JZAt2LFAFGHWzUeb6zSEN9/cTqawhgrC4rKN5Lgy7zzy1hNZGAcwJlCDzK:p4b

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\drp.js
    1⤵
      PID:2340

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads