15d772ff798c74b9c86d481b0cc432580b6fde50f061b8904c3e4297fea755e3 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

paste.js

windows7-x64

3

paste.js

windows10-2004-x64

3

Resubmissions

02/08/2024, 17:56

240802-wh3gpatenq 3

Analysis

max time kernel
1795s
max time network
1800s
platform
windows10-2004_x64
resource
win10v2004-20240802-es
resource tags

arch:x64arch:x86image:win10v2004-20240802-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
02/08/2024, 17:56

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

paste.js

Resource

win7-20240704-es

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral2

Sample

paste.js

Resource

win10v2004-20240802-es

windows10-2004-x64

1 signatures

1800 seconds

Report Analysis Logs

General

Target

paste.js
Size

11KB
MD5

b81505e6a4f4748be6f30be814e288af
SHA1

4ce2d6e5bd244632fbdcfb6c756e341231a78fec
SHA256

15d772ff798c74b9c86d481b0cc432580b6fde50f061b8904c3e4297fea755e3
SHA512

6aad6d7439ebf56fcbff8c0b89a086f70981031fbc776d12409258b46fdbd6230513b0bbf7b4f075c0b1ba556568f42a1817057e42e28f9c8459b146b6a2bb1f
SSDEEP

192:veiDZdpHaM1YP3E2BG7eiZn+GICFrooZF6VSIap5:vpp6MmP33BG7eiZ+GIQrooZI0IaL

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\paste.js
1⤵
PID:1480

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=es --service-sandbox-type=asset_store_service --field-trial-handle=2616,i,15554696853514343836,10056627555468107043,262144 --variations-seed-version --mojo-platform-channel-handle=1304 /prefetch:8
1⤵
PID:1728

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=es --service-sandbox-type=asset_store_service --field-trial-handle=3280,i,15554696853514343836,10056627555468107043,262144 --variations-seed-version --mojo-platform-channel-handle=1436 /prefetch:8
1⤵
PID:3900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy