Overview

overview

5

Static

static

5

Add-on/Md5Check.exe

windows7-x64

3

Add-on/Md5Check.exe

windows10-2004-x64

3

Add-on/uninstall.js

windows7-x64

3

Add-on/uninstall.js

windows10-2004-x64

3

Add-on/新...��.url

windows7-x64

1

Add-on/新...��.url

windows10-2004-x64

1

Docs/PHPB2...al.pdf

windows7-x64

3

Docs/PHPB2...al.pdf

windows10-2004-x64

3

upload/app...x.html

windows7-x64

3

upload/app...x.html

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...XML.js

windows7-x64

3

upload/app...XML.js

windows10-2004-x64

3

upload/app...rty.js

windows7-x64

3

upload/app...rty.js

windows10-2004-x64

3

upload/app...map.js

windows7-x64

3

upload/app...map.js

windows10-2004-x64

3

upload/app...oud.js

windows7-x64

3

upload/app...oud.js

windows10-2004-x64

3

upload/app...umb.js

windows7-x64

3

upload/app...umb.js

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...ass.js

windows7-x64

3

upload/app...ass.js

windows10-2004-x64

3

upload/app...it.ps1

windows7-x64

3

upload/app...it.ps1

windows10-2004-x64

3

upload/app...uz.ps1

windows7-x64

3

upload/app...uz.ps1

windows10-2004-x64

3

upload/app/index.html

windows7-x64

3

upload/app/index.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    21-08-2024 10:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/app/include/feedcreator.class.js

  • Size

    50KB

  • MD5

    b0d049567e8247df2c21519e6fd836ae

  • SHA1

    638e9bd3c35d7589afc57d8da70ea29dfa101b3e

  • SHA256

    fe7b0b424083e620be68c79a8f1af11d4f90e1b98a4c71581d884322a38d3f38

  • SHA512

    ff25c7f9a7328a0fd0fa461500b6cec0e50c4342d4d4fdeb4368c931dad713d0195f143756a5a09b52dfc852089f2c14514c1f45aece2c4e49aa71f6f7f760cd

  • SSDEEP

    1536:fwxGJd9PJDfJsSd7edujJGW7V4hj/i7k25RSBui3Uqq9iENZxB2tOmu+J2nilV+k:f9RKalsmzqzUNAh

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\upload\app\include\feedcreator.class.js
    1⤵
      PID:3036

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads