90bf554dcf5f0775bac053eaf5055b74b2cfe0ac29fdc4d41547176b3301719e | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Albion-Onl...-a.zip

windows10-2004-x64

1

scripts/Ha...ler.js

windows10-2004-x64

3

scripts/Ha...nfo.js

windows10-2004-x64

3

scripts/Ha...ler.js

windows10-2004-x64

3

scripts/Ha...ler.js

windows10-2004-x64

3

scripts/Ha...ms.txt

windows10-2004-x64

1

scripts/Ut...ils.js

windows10-2004-x64

3

scripts/Ut...des.js

windows10-2004-x64

3

scripts/Ut...ngs.js

windows10-2004-x64

3

scripts/Ut...ils.js

windows10-2004-x64

3

scripts/alpine.min.js

windows10-2004-x64

3

scripts/cl...and.js

windows10-2004-x64

3

scripts/cl...ket.js

windows10-2004-x64

3

scripts/cl...ser.js

windows10-2004-x64

3

scripts/cl...zer.js

windows10-2004-x64

3

scripts/en...e.json

windows10-2004-x64

3

scripts/in...ine.js

windows10-2004-x64

3

scripts/ta...ut.css

windows10-2004-x64

7

server-scr...tor.js

windows10-2004-x64

3

sounds/player.mp3

windows10-2004-x64

6

views/layout.html

windows10-2004-x64

1

views/login.js

windows10-2004-x64

3

views/main/chests.js

windows10-2004-x64

3

views/main...g.html

windows10-2004-x64

1

views/main/enemies.js

windows10-2004-x64

3

views/main/home.js

windows10-2004-x64

3

views/main...ist.js

windows10-2004-x64

3

views/main/map.js

windows10-2004-x64

3

views/main...ap.ejs

windows10-2004-x64

3

views/main...es.ejs

windows10-2004-x64

3

views/main...gs.ejs

windows10-2004-x64

3

zqradar.ico

windows10-2004-x64

3

Resubmissions

23/05/2024, 15:52

240523-tba3ragd57 7

23/05/2024, 15:44

240523-s6hweagb94 7

Analysis

max time kernel
1679s
max time network
1172s
platform
windows10-2004_x64
resource
win10v2004-20240426-fr
resource tags

arch:x64arch:x86image:win10v2004-20240426-frlocale:fr-fros:windows10-2004-x64systemwindows
submitted
23/05/2024, 15:44

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Albion-Online-ZQRadar-v1.4.0-a.zip

Resource

win10v2004-20240426-fr

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral2

Sample

scripts/Handlers/MobsHandler.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral3

Sample

scripts/Handlers/MobsInfo.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral4

Sample

scripts/Handlers/PlayersHandler.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral5

Sample

scripts/Handlers/WispCageHandler.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral6

Sample

scripts/Handlers/items.txt

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral7

Sample

scripts/Utils/DrawingUtils.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral8

Sample

scripts/Utils/EventCodes.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral9

Sample

scripts/Utils/Settings.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral10

Sample

scripts/Utils/Utils.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral11

Sample

scripts/alpine.min.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral12

Sample

scripts/classes/PhotonCommand.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral13

Sample

scripts/classes/PhotonPacket.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral14

Sample

scripts/classes/PhotonPacketParser.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral15

Sample

scripts/classes/Protocol16Deserializer.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral16

Sample

scripts/enumerations/Protocol16Type.json

Resource

win10v2004-20240426-fr

windows10-2004-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

scripts/init-alpine.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral18

Sample

scripts/tailwind.output.css

Resource

win10v2004-20240426-fr

windows10-2004-x64

5 signatures

1800 seconds

Behavioral task

behavioral19

Sample

server-scripts/adapter-selector.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral20

Sample

sounds/player.mp3

Resource

win10v2004-20240426-fr

windows10-2004-x64

3 signatures

1800 seconds

Behavioral task

behavioral21

Sample

views/layout.html

Resource

win10v2004-20240426-fr

windows10-2004-x64

8 signatures

1800 seconds

Behavioral task

behavioral22

Sample

views/login.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral23

Sample

views/main/chests.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral24

Sample

views/main/drawing.html

Resource

win10v2004-20240426-fr

windows10-2004-x64

8 signatures

1800 seconds

Behavioral task

behavioral25

Sample

views/main/enemies.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral26

Sample

views/main/home.js

Resource

win10v2004-20240508-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral27

Sample

views/main/ignorelist.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral28

Sample

views/main/map.js

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral29

Sample

views/main/require-map.ejs

Resource

win10v2004-20240508-fr

windows10-2004-x64

3 signatures

1800 seconds

Behavioral task

behavioral30

Sample

views/main/resources.ejs

Resource

win10v2004-20240508-fr

windows10-2004-x64

3 signatures

1800 seconds

Behavioral task

behavioral31

Sample

views/main/settings.ejs

Resource

win10v2004-20240426-fr

windows10-2004-x64

3 signatures

1800 seconds

Behavioral task

behavioral32

Sample

zqradar.ico

Resource

win10v2004-20240426-fr

windows10-2004-x64

1 signatures

1800 seconds

Report Analysis Logs

General

Target

scripts/Utils/Settings.js
Size

18KB
MD5

22eb5cd95b8e976f5898982860fd8647
SHA1

d114d4ad0c926aac1f32c75dcb33c77a66eb0b38
SHA256

99347e1e990783accdb36ea27a5e75294d9c7411c2f5cf418d58975d0c6a4bf1
SHA512

1edeb42ea171be51cb84a5c5315a48808d6622045fac3b528723d8edefbcf1bd2c514c1e4ea084f68a0d24b92feb594f90ac94d6459d0d3de872e8d3113d4aab
SSDEEP

384:O0AlNJXEAXlCNG8EJOliC2vWbL16CWrvdRMr0sV8W7h4rVwbbEylchXEHU/Y2dWy:yY0n9Bl4Nmn

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\scripts\Utils\Settings.js
1⤵
PID:2068

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy