Overview

overview

3

Static

static

1

upload/adm...nc.ps1

windows7-x64

3

upload/adm...nc.ps1

windows10-2004-x64

3

upload/adm...map.js

windows7-x64

3

upload/adm...map.js

windows10-2004-x64

3

upload/adm...ure.js

windows7-x64

3

upload/adm...ure.js

windows10-2004-x64

3

upload/adm...inc.js

windows7-x64

3

upload/adm...inc.js

windows10-2004-x64

3

upload/adm...x.html

windows7-x64

1

upload/adm...x.html

windows10-2004-x64

1

upload/adm...inc.js

windows7-x64

3

upload/adm...inc.js

windows10-2004-x64

3

upload/adm...tpl.js

windows7-x64

3

upload/adm...tpl.js

windows10-2004-x64

3

upload/adm...x.html

windows7-x64

1

upload/adm...x.html

windows10-2004-x64

1

upload/adm...tpl.js

windows7-x64

3

upload/adm...tpl.js

windows10-2004-x64

3

upload/api/index.html

windows7-x64

1

upload/api/index.html

windows10-2004-x64

1

upload/cou...tpl.js

windows7-x64

3

upload/cou...tpl.js

windows10-2004-x64

3

upload/cou...tpl.js

windows7-x64

3

upload/cou...tpl.js

windows10-2004-x64

3

upload/cou...int.js

windows7-x64

3

upload/cou...int.js

windows10-2004-x64

3

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    20-07-2024 23:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/admin/templates/area.tpl.js

  • Size

    6KB

  • MD5

    bbd055b211f2af9f2402552e159bade4

  • SHA1

    a8bccc473664893b31fb4b56cffa6169edc8144c

  • SHA256

    c373771a52f4a47723560d17fc39f2938d3bc4d4f077194de7375883b74bad4a

  • SHA512

    2b0780bd55191aae0c5eb54ab5d1ba91e1394eb34ac706a68328c4f0ed3818bd218acfe5d8eb983a4fcc649d32b30608a6c9ab3cb591dcf0342a10e477cac37c

  • SSDEEP

    96:7oFSbcjf6pF8QGiXFOYAxrdSArAbdx6+Qf1eBGlddddpCqUN:7oFSASGi1O1yZ2+Qf/CZN

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\upload\admin\templates\area.tpl.js
    1⤵
      PID:2304

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads