Overview

overview

3

Static

static

1

admin/新�...��.url

windows7-x64

1

admin/新�...��.url

windows10-2004-x64

1

images/index.htm

windows7-x64

1

images/index.htm

windows10-2004-x64

1

install/common.js

windows7-x64

3

install/common.js

windows10-2004-x64

3

install/correctpng.js

windows7-x64

3

install/correctpng.js

windows10-2004-x64

3

js/Drag.js

windows7-x64

3

js/Drag.js

windows10-2004-x64

3

js/Resize.js

windows7-x64

3

js/Resize.js

windows10-2004-x64

3

js/admin/admin.js

windows7-x64

3

js/admin/admin.js

windows10-2004-x64

3

js/admin/common.js

windows7-x64

3

js/admin/common.js

windows10-2004-x64

3

js/admin/s...ate.js

windows7-x64

3

js/admin/s...ate.js

windows10-2004-x64

3

js/ajax.js

windows7-x64

3

js/ajax.js

windows10-2004-x64

3

js/common.js

windows7-x64

3

js/common.js

windows10-2004-x64

3

js/kindedi...tor.js

windows7-x64

3

js/kindedi...tor.js

windows10-2004-x64

3

js/kindedi...t.html

windows7-x64

1

js/kindedi...t.html

windows10-2004-x64

1

js/kindedi...h.html

windows7-x64

1

js/kindedi...h.html

windows10-2004-x64

1

js/kindedi...e.html

windows7-x64

1

js/kindedi...e.html

windows10-2004-x64

1

js/kindedi...k.html

windows7-x64

1

js/kindedi...k.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    126s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-07-2024 00:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    js/kindeditor/kindeditor.js

  • Size

    96KB

  • MD5

    0dca2ca3e0124416d5a6d9a4ea7aafff

  • SHA1

    06ae6cd851cb37da14de99fb1be4dcc9eabb0bfd

  • SHA256

    0bffbef78b11db40dd3e53ba43014f80a9c087dd9ed39d01b41855d1b12caab0

  • SHA512

    d59bae64bde8efb92aeced7fa6f2b6b8cd08a6519083d50a8fd7778069eab4bb860b818ea298bce5de4a7e0ff79b0162e734196e736c5f55854dc29e1b4dae25

  • SSDEEP

    3072:tN2i+2hVP2O1g2egYQI8a7TbX/J1jO3dBK:gjzj6+

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\js\kindeditor\kindeditor.js
    1⤵
      PID:32

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads