Overview

overview

5

Static

static

5

Add-on/Md5Check.exe

windows7-x64

3

Add-on/Md5Check.exe

windows10-2004-x64

3

Add-on/uninstall.js

windows7-x64

3

Add-on/uninstall.js

windows10-2004-x64

3

Add-on/新...��.url

windows7-x64

1

Add-on/新...��.url

windows10-2004-x64

1

Docs/PHPB2...al.pdf

windows7-x64

3

Docs/PHPB2...al.pdf

windows10-2004-x64

3

upload/app...x.html

windows7-x64

3

upload/app...x.html

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...XML.js

windows7-x64

3

upload/app...XML.js

windows10-2004-x64

3

upload/app...rty.js

windows7-x64

3

upload/app...rty.js

windows10-2004-x64

3

upload/app...map.js

windows7-x64

3

upload/app...map.js

windows10-2004-x64

3

upload/app...oud.js

windows7-x64

3

upload/app...oud.js

windows10-2004-x64

3

upload/app...umb.js

windows7-x64

3

upload/app...umb.js

windows10-2004-x64

3

upload/app...inc.js

windows7-x64

3

upload/app...inc.js

windows10-2004-x64

3

upload/app...ass.js

windows7-x64

3

upload/app...ass.js

windows10-2004-x64

3

upload/app...it.ps1

windows7-x64

3

upload/app...it.ps1

windows10-2004-x64

3

upload/app...uz.ps1

windows7-x64

3

upload/app...uz.ps1

windows10-2004-x64

3

upload/app/index.html

windows7-x64

3

upload/app/index.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-08-2024 10:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Add-on/uninstall.js

  • Size

    9KB

  • MD5

    7b4f0b5ccd3d5a46990c45734fcdf506

  • SHA1

    a2f63b00facbaee56bcc41cf929f26d70b4c4689

  • SHA256

    4ff4525a2f80cab2bdf2f8170097285b3096193c5a9e248ca6240fca1c8635f0

  • SHA512

    0f9748a25f01e8a15ecb35730479f1a83f21e20f1881f188281c1bbe3ac93c8bd06eeec0c0ebd6880c35ecbf045e2e11331f74050d0f79e35fb349b6d12a4236

  • SSDEEP

    192:JD9IA1e4mzlRIdNAiDNRlCiU2J3dfkrA5R5kmAUI1jxF:UvIdVpRl9PkrvNLVz

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\Add-on\uninstall.js
    1⤵
      PID:1600

    Network

    MITRE ATT&CK Matrix ATT&CK v13

    Initial Access

    Execution

    Command and Scripting Interpreter

    1
    T1059

    JavaScript

    1
    T1059.007

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Resource Development

    Reconnaissance

    Replay Monitor

    Loading Replay Monitor...

    Downloads