e11e1d02027ed589370e37310fb3c4e607cc29e305a201dc2cbc04ee94579153 | Triage

Analysis

max time kernel
93s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
03-07-2024 04:46

Sharing

Report Analysis Logs

General

Target

$PLUGINSDIR/LuaSocket/lua/ltn12.js
Size

7KB
MD5

3dfc54ef5c4d74c9558b503ea5595d0d
SHA1

79016426ab7d0d6de6c2316b9ea02d8cbf5fc53a
SHA256

688b7d780603fb9aa75f80f178e8451aed347d0112fd526591108a2d4c98ab50
SHA512

f79cadff428c375ea174279a9ada186f02fe43518cf0549d24fb1cd3288c1d15377558e59bfe2eda55c7e7b204b04fd37a00a76dbdecb475ac09cfb331043194
SSDEEP

192:RYfAp6an3GBkiwbbCk2ecK1PAM5k7vxMK+IYlUGoLhA4jxkKQpLMH6Y6Fdhi6zqN:Rp2BkBCk2eYM6xMLXNBFT1wMuDzl2c

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\LuaSocket\lua\ltn12.js
1⤵
PID:2152

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads