Overview

overview

3

Static

static

1

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...are.js

windows7-x64

3

upload/bbs...are.js

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

upload/bbs...unc.js

windows7-x64

3

upload/bbs...unc.js

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...ex.htm

windows7-x64

3

upload/bbs...ex.htm

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

upload/bbs...nc.ps1

windows7-x64

3

upload/bbs...nc.ps1

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

upload/bbs...inc.js

windows7-x64

3

upload/bbs...inc.js

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    24-07-2024 14:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/bbs/admin/main.inc.js

  • Size

    12KB

  • MD5

    63769f73893c98391724e44e2d1caa74

  • SHA1

    e13ab73d84b28e2dcbc01c505a6fc0caad449e38

  • SHA256

    9ab9082cf416b75312ce55690400c3ecf4b546318b24b7589a3238212bb58603

  • SHA512

    71ce4cd08857a660b47844dcb0aab0ca9759412a7e7cbd13d83a7e94e35d4de4b85f53a491c30f74e35d5d8cb47223b1efd96b131b20d41921b1a1cd0b87d352

  • SSDEEP

    384:ouAvgqO2sRIz1yCPUo7GnuGzlWca16QFep1u3cS3gQt+:TAvgqoR2xPD70uGzPahyeVt+

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\upload\bbs\admin\main.inc.js
    1⤵
      PID:2824

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads