Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:46

General

  • Target

    054089924142DE_Mai_09_2019.js

  • Size

    42KB

  • MD5

    f498b52c97166598e564f3354c223740

  • SHA1

    3d0dcae0e2a63796b3042c7940a48495bfbd1a88

  • SHA256

    08324ad1663b948f09fa5c46383575683088ba414169958d1c6230ce336015ae

  • SHA512

    d22dee79e086a323b6267e4540d2ebd7a22a7fe7733ec6d46f115b9a2100ee9d1c654d969c3362a34b684cf7e29b88e28fd89630e7c30a4bfb5b41dafa33c31d

  • SSDEEP

    768:n1u87RUaNI9m3CpKtvkSDgkDWnCDnilnMuppCXyijVvLccIpLZn3NOv4EOmMlOAd:n1u87RUaNIGO2wXaCID8H+1unT7josbX

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 5 IoCs
  • Command and Scripting Interpreter: JavaScript 1 TTPs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies system certificate store 2 TTPs 2 IoCs

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\054089924142DE_Mai_09_2019.js
    1⤵
    • Blocklisted process makes network request
    • Modifies system certificate store
    PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads