Overview

overview

7

Static

static

7

wwwroot/GetCode.asp

windows7-x64

3

wwwroot/GetCode.asp

windows10-2004-x64

3

wwwroot/bottom.asp

windows7-x64

3

wwwroot/bottom.asp

windows10-2004-x64

3

wwwroot/ch...pe.asp

windows7-x64

3

wwwroot/ch...pe.asp

windows10-2004-x64

3

wwwroot/ch...te.asp

windows7-x64

3

wwwroot/ch...te.asp

windows10-2004-x64

3

wwwroot/client.asp

windows7-x64

3

wwwroot/client.asp

windows10-2004-x64

3

wwwroot/crm/1.html

windows7-x64

3

wwwroot/crm/1.html

windows10-2004-x64

3

wwwroot/cr...er.asp

windows7-x64

3

wwwroot/cr...er.asp

windows10-2004-x64

3

wwwroot/cr...nt.asp

windows7-x64

3

wwwroot/cr...nt.asp

windows10-2004-x64

3

wwwroot/cr...xe.asp

windows7-x64

3

wwwroot/cr...xe.asp

windows10-2004-x64

3

wwwroot/cr...st.asp

windows7-x64

3

wwwroot/cr...st.asp

windows10-2004-x64

3

wwwroot/cr...nd.asp

windows7-x64

3

wwwroot/cr...nd.asp

windows10-2004-x64

3

wwwroot/cr...se.vbs

windows7-x64

1

wwwroot/cr...se.vbs

windows10-2004-x64

1

wwwroot/cr...ig.asp

windows7-x64

3

wwwroot/cr...ig.asp

windows10-2004-x64

3

wwwroot/cr.../i.vbs

windows7-x64

1

wwwroot/cr.../i.vbs

windows10-2004-x64

1

wwwroot/cr...ss.vbs

windows7-x64

1

wwwroot/cr...ss.vbs

windows10-2004-x64

1

wwwroot/cr...ad.vbs

windows7-x64

1

wwwroot/cr...ad.vbs

windows10-2004-x64

1

Analysis

  • max time kernel
    10s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    13-08-2024 20:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    wwwroot/client.asp

  • Size

    180KB

  • MD5

    b7c4f668a351e235d0f44c12211c815e

  • SHA1

    1122abc2eb5db2f3f7ccab6fdb8bf689524e3ec8

  • SHA256

    99e9641731c608f6accadf70b950dfa8a79776166daa5e8f5317d8b7046b332f

  • SHA512

    5a1f50afbdd24cf56ccd9da1c8f10235091566e7a68fabe8c65d5891edc002ca1d2bdb444e827e00d0938849098652b33d21150ecee3e133484e9042b70ce776

  • SSDEEP

    1536:SizQCpCt7k/yEd4nO/6UWh3D0jnIM3b9K3:SizQCpEk/yEd4nO/6UOD0jnIM3b9K3

Score
3/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\wwwroot\client.asp
    1⤵
      PID:2472

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2472-21-0x0000000002370000-0x0000000002371000-memory.dmp

      Filesize

      4KB

      Download