0a37c63dbb180cc95fc49da9cf08f2414c9c4b47686225d2d59b29d7ebad6c1e | Triage

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
11/06/2024, 11:13

Sharing

Report Analysis Logs

General

Target

happyfestival/geoplugin.class.js
Size

4KB
MD5

89fd0b818f3c0793f136fe6141bc266f
SHA1

bd078920ca71f20af6d50b0bb210ba9d2a882e47
SHA256

afad0f0cd2825a7421421d73ef7f3836c039277969e6535916cd843f298dd79d
SHA512

f3c68bcc6ac10f64ccc79ec9389f41f0e6a8c8991e17ffdb22119c35407bdb0fed0e6608edab9da8ec11092e4e482c0079f991f9f519e97f4431a81d37a9c802
SSDEEP

96:fFvMBVVlm+p/LYajQa710QmMHvVew+Y5oLQCyi5QF:fFvMDhJR7t

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\happyfestival\geoplugin.class.js
1⤵
PID:3672

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads