Overview

overview

5

Static

static

5

Add-on/Md5Check.exe

windows7-x64

3

Add-on/Md5Check.exe

windows10-2004-x64

3

Add-on/uninstall.js

windows7-x64

3

Add-on/uninstall.js

windows10-2004-x64

3

Add-on/新...��.url

windows7-x64

1

Add-on/新...��.url

windows10-2004-x64

1

Docs/PHPB2...al.pdf

windows7-x64

3

Docs/PHPB2...al.pdf

windows10-2004-x64

3

upload/app...x.html

windows7-x64

3

upload/app...x.html

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...XML.js

windows7-x64

3

upload/app...XML.js

windows10-2004-x64

3

upload/app...rty.js

windows7-x64

3

upload/app...rty.js

windows10-2004-x64

3

upload/app...map.js

windows7-x64

3

upload/app...map.js

windows10-2004-x64

3

upload/app...oud.js

windows7-x64

3

upload/app...oud.js

windows10-2004-x64

3

upload/app...umb.js

windows7-x64

3

upload/app...umb.js

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...ass.js

windows7-x64

3

upload/app...ass.js

windows10-2004-x64

3

upload/app...it.ps1

windows7-x64

3

upload/app...it.ps1

windows10-2004-x64

3

upload/app...uz.ps1

windows7-x64

3

upload/app...uz.ps1

windows10-2004-x64

3

upload/app/index.html

windows7-x64

3

upload/app/index.html

windows10-2004-x64

3

Analysis

  • max time kernel
    14s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    21-08-2024 10:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/app/include/class.my.smarty.js

  • Size

    5KB

  • MD5

    acaa035443dd6999315131ba403ff553

  • SHA1

    2110f23c5d246cd2a6cfc4d8a04d9f6a57b5a841

  • SHA256

    150ccedf2a15ca06620a08408fb5326b0235fd41716597b3b8fbcb67cacbc381

  • SHA512

    b1b8b3d9aed3dda8fbee0106b1203cb28431fa55b4cabfa18444ceb37be402cc6bff5579c2a915dfc8c42c9870fe4f84914d0f9eb0a198bac1f803b58be9f841

  • SSDEEP

    96:wkvUy9k6zn1ub4S8hTMfGOC/3Uy3vkFshFsxFFifOei3:Cy9k6pu8wOT3MFshFsxFFifti3

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\upload\app\include\class.my.smarty.js
    1⤵
      PID:2928

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads