b182db8db80668d6e141a2e1ef034637d67554ce58cdeb5564cf8ebfc1324114

Analysis

max time kernel
122s
max time network
130s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
23/08/2024, 01:06

Target

Transaction_Details0024814790332652314685.js
Size

1.9MB
MD5

f18b795bc0f2a3010902fdf2f12edd85
SHA1

6476f30654a7db851872910f83beaf8cd2b2d11f
SHA256

b182db8db80668d6e141a2e1ef034637d67554ce58cdeb5564cf8ebfc1324114
SHA512

c6ca049c6e15a7e9db6dbf7e8127b48ec358e520197f3b9add1eb2a5c7ae6252adc3f61fe1e29d9cdf19fd3e0c88204402a34322f50f917ae8295033f9e81d57
SSDEEP

192:+hviQRZFLkLvWph5eOpefsQiOW1l35X0PWSByEvy67N288fRLqTId6kV6jyjalQs:QX7gtAwB

Score

8^/10

execution

Blocklisted process makes network request 4 IoCs

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\Transaction_Details0024814790332652314685.js
1⤵
- Blocklisted process makes network request
PID:2364

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact