Overview
overview
3Static
static
1so/admin.asp
windows7-x64
3so/admin.asp
windows10-2004-x64
3so/baidugoogle.asp
windows7-x64
3so/baidugoogle.asp
windows10-2004-x64
3so/big5.asp
windows7-x64
3so/big5.asp
windows10-2004-x64
3so/blank.asp
windows7-x64
3so/blank.asp
windows10-2004-x64
3so/client.vbs
windows7-x64
1so/client.vbs
windows10-2004-x64
1so/config.vbs
windows7-x64
1so/config.vbs
windows10-2004-x64
1so/data/zxsoudata.asp
windows7-x64
3so/data/zxsoudata.asp
windows10-2004-x64
3so/festival.asp
windows7-x64
3so/festival.asp
windows10-2004-x64
3so/frame/middle.html
windows7-x64
3so/frame/middle.html
windows10-2004-x64
3so/gbtoutf8.asp
windows7-x64
3so/gbtoutf8.asp
windows10-2004-x64
3so/getcode.asp
windows7-x64
3so/getcode.asp
windows10-2004-x64
3so/index.asp
windows7-x64
3so/index.asp
windows10-2004-x64
3so/js/change.js
windows7-x64
3so/js/change.js
windows10-2004-x64
3so/js/getc...pic.js
windows7-x64
3so/js/getc...pic.js
windows10-2004-x64
3so/js/hwinput.js
windows7-x64
3so/js/hwinput.js
windows10-2004-x64
3so/js/qqinput.js
windows7-x64
3so/js/qqinput.js
windows10-2004-x64
3Analysis
-
max time kernel
148s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
30-08-2024 10:16
Static task
static1
Behavioral task
behavioral1
Sample
so/admin.asp
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
so/admin.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
so/baidugoogle.asp
Resource
win7-20240708-en
Behavioral task
behavioral4
Sample
so/baidugoogle.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
so/big5.asp
Resource
win7-20240729-en
Behavioral task
behavioral6
Sample
so/big5.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
so/blank.asp
Resource
win7-20240708-en
Behavioral task
behavioral8
Sample
so/blank.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
so/client.vbs
Resource
win7-20240704-en
Behavioral task
behavioral10
Sample
so/client.vbs
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
so/config.vbs
Resource
win7-20240704-en
Behavioral task
behavioral12
Sample
so/config.vbs
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
so/data/zxsoudata.asp
Resource
win7-20240729-en
Behavioral task
behavioral14
Sample
so/data/zxsoudata.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
so/festival.asp
Resource
win7-20240704-en
Behavioral task
behavioral16
Sample
so/festival.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral17
Sample
so/frame/middle.html
Resource
win7-20240704-en
Behavioral task
behavioral18
Sample
so/frame/middle.html
Resource
win10v2004-20240802-en
Behavioral task
behavioral19
Sample
so/gbtoutf8.asp
Resource
win7-20240729-en
Behavioral task
behavioral20
Sample
so/gbtoutf8.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral21
Sample
so/getcode.asp
Resource
win7-20240705-en
Behavioral task
behavioral22
Sample
so/getcode.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral23
Sample
so/index.asp
Resource
win7-20240708-en
Behavioral task
behavioral24
Sample
so/index.asp
Resource
win10v2004-20240802-en
Behavioral task
behavioral25
Sample
so/js/change.js
Resource
win7-20240729-en
Behavioral task
behavioral26
Sample
so/js/change.js
Resource
win10v2004-20240802-en
Behavioral task
behavioral27
Sample
so/js/getcode_showpic.js
Resource
win7-20240704-en
Behavioral task
behavioral28
Sample
so/js/getcode_showpic.js
Resource
win10v2004-20240802-en
Behavioral task
behavioral29
Sample
so/js/hwinput.js
Resource
win7-20240704-en
Behavioral task
behavioral30
Sample
so/js/hwinput.js
Resource
win10v2004-20240802-en
Behavioral task
behavioral31
Sample
so/js/qqinput.js
Resource
win7-20240708-en
Behavioral task
behavioral32
Sample
so/js/qqinput.js
Resource
win10v2004-20240802-en
General
-
Target
so/js/hwinput.js
-
Size
6KB
-
MD5
ad16bf8bbdcf90ba9f0f0f9ab5342467
-
SHA1
6096b364c3f6bab6309d16191b98066bcd807e19
-
SHA256
58177353d653b01ce7fe1baa18c05ed04ce512c95ac45d2852f6618be826f0cd
-
SHA512
2c35bdcabd15206b4d62f511056cc010c4d59ab971f2c3a00fdd1db576a6dbe1bb2720e7643095aaa28b22aaa6b195132cf65dbb3424a5dc4af397f2448e8b8b
-
SSDEEP
96:9PSZZYeJAoCAN141jaqICAMsTlgJPTJmH7owX8IMSfyCw8h:gHfvHC5sy0oBIMSf/L
Malware Config
Signatures
-
Command and Scripting Interpreter: JavaScript 1 TTPs