Overview

overview

1

Static

static

1

target.vbs

windows7-x64

1

target.vbs

windows10-2004-x64

1

Resubmissions

13-07-2024 14:14

240713-rj57ratgjm 1

13-07-2024 14:10

240713-rg151swcld 1

13-07-2024 13:51

240713-q58z4atbml 4

13-07-2024 13:19

240713-qkqysascrl 8

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-07-2024 14:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    target.vbs

  • Size

    1B

  • MD5

    7215ee9c7d9dc229d2921a40e899ec5f

  • SHA1

    b858cb282617fb0956d960215c8e84d1ccf909c6

  • SHA256

    36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

  • SHA512

    f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\WScript.exe
    "C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\target.vbs"
    1⤵
      PID:1380

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\Desktop\ApproveUnregister.ods
      Filesize

      167KB

      MD5

      5018f726a92c9141f564f9fef196d9d3

      SHA1

      282af1377a0ae3718c8eb29fa4151c6210d5016d

      SHA256

      536da763c01d82eafa1c0ad3713cb1dbcdde137e1fd756dff811c32d180e92f3

      SHA512

      989b007b8d3a1106ad09a90435c6d860e82e0a28a14db0ce5ceedf41009df2a6a7970b562bdbe1d45c28900d7a1c853b8f38b9c2c39fd17a09aa245ae351985c

      Download Submit

    • C:\Users\Admin\Desktop\ClearSelect.pot
      Filesize

      303KB

      MD5

      758ba2c986db8058d71277fc81d9362f

      SHA1

      b7c2f039e5c6077ac9e85541b654cbf57c0c8a85

      SHA256

      5521ac1fe68b95d81926c38ec0599c6f8993fdff64ab83ec1c9169ea174acaf0

      SHA512

      e207622cf434ba75d041c7ddbe59349eb4bcf43c3580798c5feadc9198f449c2cb6110c88413eed4353b0250c39671e827ce6c727a8451c6ff4dedc2c74ca7de

      Download Submit

    • C:\Users\Admin\Desktop\CompressAssert.asf
      Filesize

      208KB

      MD5

      48730859cf863c980910a136d4a1f233

      SHA1

      b5d47d7b98dcfecbd3cebd6fe6aa5ac86dd8ce17

      SHA256

      a0ccc705c992405c3a09be9a1b1c938c4966e0b105f0a701a42fe7d65c663746

      SHA512

      c82863db7e6d96654bfe05a9b6ad7f6e34d42eb1fb09ccbf5b51bbc71ae0c7b4f06f496b3ff0ed35da74403f612f0d8781980a0da8796d0369892245e496cf8c

      Download Submit

    • C:\Users\Admin\Desktop\ConvertFromSync.exe
      Filesize

      334KB

      MD5

      5c848f38cb11fd68396d4f258219e6d5

      SHA1

      c5662b04c36a9e07462bd5311b240f19318ee17c

      SHA256

      13e3cf0438be99cf79849e61c25e77d5e98a95d5f76bdf8d8ccb325a6215ead8

      SHA512

      305c78d731a96d411ce8eec83ec3f0b2c36429f2cf2fd77611fd189a7dd0e2c99c58f7b10552999fb5d0fdc3b73b3e4d85a927a8c96e507cb68d3bd0aee28ed8

      Download Submit

    • C:\Users\Admin\Desktop\DenyDismount.docx
      Filesize

      15KB

      MD5

      e9d5b7c1ec38b8c38036c582f62eb98d

      SHA1

      4057edc04daff99afb20a0d867611572ee9e7a39

      SHA256

      dbd46f5fda3fad0f0a89db6c0fac877360741ee188def1b89d039990cbc425b5

      SHA512

      2f8ee54cbf5f265a1c1c8b94ffc8d85444654b95f6f8adf10d2a86777b2b104fc75c01dd7408b13139e81089125e0da0a5168c925d1b1597f073ceb0138bafb3

      Download Submit

    • C:\Users\Admin\Desktop\EditSelect.xps
      Filesize

      417KB

      MD5

      64cf3f839a03d869b6c94f9876f8324a

      SHA1

      9bf843dd6b839c4692337e8a34c62d382faec839

      SHA256

      645200795e93f9291146c12aa72bbb9bffdc745bcc457e57f43996e200ddcf56

      SHA512

      a4d0bc4b15f4561f3e8804d8daf84390540c6c10c8ce9d94d01478d852d08f160542d01776885f634e931c66bca14bdea4f05ffe7b3e40b6a13161699e1daa42

      Download Submit

    • C:\Users\Admin\Desktop\InitializeWait.3g2
      Filesize

      313KB

      MD5

      c1abba0ea20b0d0f22039c2e00cab25b

      SHA1

      70ae56d79fa919054ee8dc4e1dd2013f6a4f832c

      SHA256

      89b6538f29a6584850fdcf20908a6e9a450460b8806dd99960573284c45face5

      SHA512

      6bd518cf8c9c69f8ef9c00364b0de88db1becc7c0b953a085f0405b108f663d924fc204b98853f6a7be86f223caf49e19f4bc296c52134d4c8e4fcc2fc283ec4

      Download Submit

    • C:\Users\Admin\Desktop\NewSplit.jtx
      Filesize

      292KB

      MD5

      9737fbff5c0f038475ad87892f32629c

      SHA1

      3a9fc0b491b197a5824ff6779639393539a45c20

      SHA256

      05e079766c5cd492c8aab32f29072ca0f30a41347dd5719375d1567acd21f48e

      SHA512

      61be321dee57df644fcaedb0b1a5b491123814b16be7caf76956a0f13a6cc430c05a3dcdfd3f874def265daa98ff35747a15121d77e9e60a1ab963955fb4b630

      Download Submit

    • C:\Users\Admin\Desktop\OutClose.wav
      Filesize

      219KB

      MD5

      742d4d0a5ea9bae90e678f4a63a28ced

      SHA1

      bb5659ab602e123821df1af56554b5cc7bd85c0b

      SHA256

      ab8b9808eda185e671d0425427005b2964cbffb0dc353407940af704b1d3d066

      SHA512

      2d82f517e0e34af4b73680741ec0303bab08da0e5af5443e3b084b56d301cb76e9d9a21e346c57814d2caf63e85f0648d020fbfe2c61dbd325add1981fbb9c88

      Download Submit

    • C:\Users\Admin\Desktop\PingSuspend.vssm
      Filesize

      198KB

      MD5

      a245f97bf21e6dc87619adab742d9ed3

      SHA1

      edce657f1604a66d0c94ebf6c2bda599cd5c11e2

      SHA256

      15299cdf48f432ccda57ddcda12f9bf1108b32e87f367e61635f7ce7682b2700

      SHA512

      5ffff665086a0768e529e0712da19d11da2062b97f9fc5e8958f1529f727ff6d8e94e6d86b0481b9282fcaefc30e09d9345c9083cd85aefce4f7cc66064ebba3

      Download Submit

    • C:\Users\Admin\Desktop\ProtectDismount.au
      Filesize

      386KB

      MD5

      8a9702df75cf2525ed8d9536b26114de

      SHA1

      09a77d5c71255b034d97d2dd236949f9a85a4489

      SHA256

      d96d86c1c1c1b46bee8fb308055c6bbf2468dc99c1fa773575e12d9ef8086fa2

      SHA512

      e7ba0c54c8bd378f5d1a1f843f2936a739dad27b3c679e8b0892000301b4297d2a1d3c50db5d7522187fc474088f71df35875512bef1125a88afa6386ccebeeb

      Download Submit

    • C:\Users\Admin\Desktop\ProtectImport.ps1xml
      Filesize

      407KB

      MD5

      6c0cea3d3c95b71b9533cec5280afa76

      SHA1

      2a73f9e626059390f673403b16013891b8d1d23a

      SHA256

      60ae7349e228933b3b3e17e49758d2bd4c41f62ba57569a0f39e9fa0aac9eecc

      SHA512

      de58fc11f20c2e90873b31d3350467d87c55eb7d59f3e13df77951aa5585316c1835e07082bed03b1f8c96fcdad4a9b91236f68baf085701e8be5e3151683b4f

      Download Submit

    • C:\Users\Admin\Desktop\PublishWatch.png
      Filesize

      355KB

      MD5

      b5d3abb48776e11c21530e642195575f

      SHA1

      ff20bc501a18340fdd4523cc6be222249b9dfe62

      SHA256

      b6f3edd0c6ed3353b0e2ddf26bbfc3f4c0360e74e587fe8b094c296dc8f48034

      SHA512

      283e665d17671c039f60353df16097d4668d496e6ef8002ed5850d27d59ae74f0e95b5063467b6c2e1a7c8a5fb2cbd57195ccdffb396d90fa2d9c5341bb5e0bd

      Download Submit

    • C:\Users\Admin\Desktop\RequestDebug.xml
      Filesize

      282KB

      MD5

      c628f0e390f784f67ffd01dc4cd18667

      SHA1

      caa837b083609cea6d0d0f6733710f9ee02707ff

      SHA256

      cd385553f6b54302aa5ecaf018eb4be69d58e79b22f27b07b6b6df82cb06d495

      SHA512

      91d56bc0ed2c9e17e6ec3fb73f740280d6c49c3576e4bff616d370b525702acc1de2a98142fca7ba10a1688b78020d99a10c54cb933f2f2a9ff30541affb4d8b

      Download Submit

    • C:\Users\Admin\Desktop\RequestUnprotect.mp2v
      Filesize

      229KB

      MD5

      882c00b6a3b0089b775449d2ac460747

      SHA1

      b42dc6da9ab0177b557205c59067356e4ecc7540

      SHA256

      a6c981d9ac3549ba5f37fb26c594617c4a2cf0c1946f8ed15f9458645b2f300a

      SHA512

      cd0cf94c09c39fbd4276317f3f37ce34e53a64b22165202fa03f49524dbd5de9c519cf41f8874307dfa5e3ba5ee8c236dab4ddde8c88efe88ed5bd4641c45e0e

      Download Submit

    • C:\Users\Admin\Desktop\ResolvePush.mpeg
      Filesize

      365KB

      MD5

      dac5a963534587af9a205663c65bb989

      SHA1

      9f8fba4b972fd6279080d73e4e4011bec93b65aa

      SHA256

      e967090e39b3b79e1e5e147c232f8076c4e2ac624591a462648b3794dfeb98fe

      SHA512

      830a008f7833c9ad536843d96b1386075d66a3d2b8232b3d1fc90d119487c655b2a0a2c1207ce4a9e1f9d5e5ac65366e5dcee81ad365767d6f4d3a59eb091b0c

      Download Submit

    • C:\Users\Admin\Desktop\SelectConvertTo.bmp
      Filesize

      271KB

      MD5

      fc29db7d9489b150bb957bf37bb7cd08

      SHA1

      556133583bc396e951bfedb23bc5bd8c99765705

      SHA256

      25dbb3b3060c8e2cd5d5e6efca9e1a35147c28051419b6e9aa40e27d0492725c

      SHA512

      f17d499fe63911c89d338b9fb0e32bf5633f68bba2d09f3f51a85e52ad7788d62cd90f495886484c2c37bd9c6b39503bf016071b6c8ab931403ffecbbed30cb0

      Download Submit

    • C:\Users\Admin\Desktop\SelectFind.js
      Filesize

      177KB

      MD5

      a45035b470ea168367fded500b0894d9

      SHA1

      693af7212b766d07e4924e6f8903ef210ef919f2

      SHA256

      4022665fbbc2605a3246b0429a8897fbd85c3dd1483679a0bb94e8d066db4a44

      SHA512

      1e11458507f222617c9fcf27fb788763fce0f2a1fcdc8270607cd94846f9e791abc16165e1fc64d8277b54882b39fd9a533a305f2e072dd272d9add5ca79ed98

      Download Submit

    • C:\Users\Admin\Desktop\SetCompress.search-ms
      Filesize

      397KB

      MD5

      87b1994f8ba3e93b2b5ba031c77177da

      SHA1

      6a59a9f1265522b16720b27a121f1ef1d795086f

      SHA256

      56002c4977cffa4dea190cfe4a943d29a20ccaf1d87e4bd20dd37f6b5baaac30

      SHA512

      35b32fdea766e6273c63e14c921d2c3794ada4dd70ce74717a8781eb89aac4cefad51a9768066043e2cf754336912773be9043225b4f2c1bac82605b1000a8c4

      Download Submit

    • C:\Users\Admin\Desktop\StopRestart.mpv2
      Filesize

      261KB

      MD5

      36791e5cda273d119b2385ad5547543c

      SHA1

      674d201329b12d5d417161d2bfaee19cb98d86b6

      SHA256

      a974a07715fbf41f3118f101a30d7e31ebbdb5a1d3cb28c4cb943992af024ddd

      SHA512

      c84c05e0ee80b2d49952fcb58745ed8f6db0257c594f632384ed1bc706d049ee02815547c208f0af0c66661d78f2f9a3c362a2eceacc6d525e2b1adb472ac4a9

      Download Submit

    • C:\Users\Admin\Desktop\SubmitLock.potm
      Filesize

      240KB

      MD5

      372e8c4497810c72abc5d24b6898193c

      SHA1

      d5bf7ee21a95b46ab74b0600212581c36f744966

      SHA256

      22a2cb7ceea9900079ff45cdacc606776bc15d8c15423c23cd4f74413bda3c7f

      SHA512

      ebfc2c3ac995c924a586956eda2f98c92239d23b1b1e67327d681db69b7a3ea9472d0295432ff73b9ba8ce633d278f63817cb4a1613203cbb67cf683657bfc8f

      Download Submit

    • C:\Users\Admin\Desktop\SuspendDismount.eprtx
      Filesize

      250KB

      MD5

      854efb0d0b1831cd22aecac0344821e4

      SHA1

      c6bf0a8b217309c5ebdb4616607521c84b6d8ccb

      SHA256

      f0583c3fc9397b09a1ba3d1745e5f9099b2d5c339bf49d0c25fbe142f9be883a

      SHA512

      8803e04ea01d42f653469a38f792911caf3df849b86121ae06e07bdd6952a6cf4bd8e1f27076e9adb5df291c7899f986a85a99f92242768e59a82277946bfa1c

      Download Submit

    • C:\Users\Admin\Desktop\SuspendReset.pub
      Filesize

      376KB

      MD5

      5a1649ca875caf8ffce16b405465d3c9

      SHA1

      0366336b079bf1b4947a65cb4ef0fe6f6f2abe77

      SHA256

      ea55645e235652a27ca399d194ba923c832ad65faecc90c8f22d8af9dcf38735

      SHA512

      b808881dfc0a2d5319a48de52d92c4c77b32ee1df340a86da3190d5accaccf5076b383907350377e6fdc3e7c0a489ceebcb2a589804bd363657ab1c4197e2d57

      Download Submit

    • C:\Users\Admin\Desktop\SwitchReceive.gif
      Filesize

      156KB

      MD5

      4b257feeb3c6b38a61d81b21fb0e4c11

      SHA1

      ff9c7c2856667e6f66ac197aa665e87a80732ddc

      SHA256

      360432c11e5276dae6a3a526628fd88b3ecca705cafb4ad32f0864002369d437

      SHA512

      b9655fbf097c8da822210cc0499eeff6656834afcc6814a4b2ba5584405433a5ccaaf8c0a7bc034c78599ca9bd9acebbda2b0ada78f675cc74593bdc07f5cd2d

      Download Submit

    • C:\Users\Admin\Desktop\SyncDisconnect.dot
      Filesize

      344KB

      MD5

      0192910c87367491f2199ec267bf9bca

      SHA1

      6b4806e7cdceb6edf8b7b830ebeb727a4e3831d8

      SHA256

      5cecddc1268984a8147abdeb02a64aa596e64622e609316ff7cdf19afa9520fa

      SHA512

      8052ca4c4250ea6119cc8ae9e6ce9b0abb50b7a5534cd81f28fcdd735db2cdfe0943c48c3d04d806bba9370fa57a86966638ddd102c07d07a366c615b21a0c99

      Download Submit

    • C:\Users\Admin\Desktop\TraceHide.vssx
      Filesize

      146KB

      MD5

      0e09aec0e790d0f95762654ea40a987a

      SHA1

      a01bb06b5591cb5fe2eac6be42f9988ec51732e4

      SHA256

      72b545be1751f135f5090d9ea024ad4f8fbf3cb7114b8cf2a9ebd354dc929ccc

      SHA512

      8c854d3dab6f0cfcab38e132e4dd41733421f8e091ee7ea5a06af05b88e67b0417461e5ddffed42c028b9c9e795d5d3e78c2ce91d6c5642fb0b555870980d328

      Download Submit

    • C:\Users\Admin\Desktop\UninstallCompare.mpe
      Filesize

      574KB

      MD5

      f8136ec9c30f030cd281f20afe6d7c14

      SHA1

      115b8dd92aa82e4af596602febcbfe0f4d31406b

      SHA256

      3e4537b9fba2b6ef857cfb6d3a19c9397e43c7439ad4a3b7aa16c6ccaa6d50da

      SHA512

      94097b5e4dbc10bc2ab60bf4669d675f8cd4585a93f109dba583d869c6a63a36983197eacd859daa05d228e136b144d0178d74834b92ce6440be3d45cc6faa83

      Download Submit

    • C:\Users\Admin\Desktop\WaitCompare.xps
      Filesize

      323KB

      MD5

      6b915e4e661de1316858ae5589d40d63

      SHA1

      8a606c08e1c29dc1efad46ab8114691a18d4880c

      SHA256

      4698dd3baaae97afa53179e093d9e927ab069473c6dee65ddae4f1274e413c98

      SHA512

      cf2ca9549d59e48ce4f3a91792c8b9c1c91843c0aa449e7794c76c0a57aea97d860809bf9adf5811f29939d0ef83443df085aa0004eb7a34cc4c7b89f67bdb84

      Download Submit

    • C:\Users\Admin\Desktop\WaitWatch.hta
      Filesize

      188KB

      MD5

      077176503cc39faa0acb655fb102fc60

      SHA1

      35bdb5b5f436df7b497800c93715620b90f1e362

      SHA256

      c4481dd9bbac412fd4bc6f8933fe30401be17d6709a3faefc243fb2d0613cc38

      SHA512

      b8f7b9f32b2aedf94455e2c31141815e199d476802f4aaffdc5b238ae4108dcdf39123316a8a58fe89fd1ebbb313338c98f5bf24235d4cacc7f1d19f93e1434c

      Download Submit