1b01207c2a72f4e7b1a62254f62365152136b3a2450994a69541b3e7064f6343 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

Cawt-2.9.6...e.docx

windows7-x64

4

Cawt-2.9.6...e.docx

windows10-2004-x64

1

Cawt-2.9.6...fo.tcl

ubuntu-18.04-amd64

1

Cawt-2.9.6...fo.tcl

debian-9-armhf

1

Cawt-2.9.6...fo.tcl

debian-9-mips

1

Cawt-2.9.6...fo.tcl

debian-9-mipsel

1

Cawt-2.9.6...ic.vbs

windows7-x64

1

Cawt-2.9.6...ic.vbs

windows10-2004-x64

1

Cawt-2.9.6...ed.vbs

windows7-x64

1

Cawt-2.9.6...ed.vbs

windows10-2004-x64

1

Cawt-2.9.6...il.vbs

windows7-x64

1

Cawt-2.9.6...il.vbs

windows10-2004-x64

1

Cawt-2.9.6...il.vbs

windows7-x64

1

Cawt-2.9.6...il.vbs

windows10-2004-x64

1

Cawt-2.9.6...te.vbs

windows7-x64

1

Cawt-2.9.6...te.vbs

windows10-2004-x64

1

Cawt-2.9.6...il.vbs

windows7-x64

1

Cawt-2.9.6...il.vbs

windows10-2004-x64

1

Cawt-2.9.6...il.vbs

windows7-x64

1

Cawt-2.9.6...il.vbs

windows10-2004-x64

1

Cawt-2.9.6...ic.vbs

windows7-x64

1

Cawt-2.9.6...ic.vbs

windows10-2004-x64

1

Cawt-2.9.6...sv.vbs

windows7-x64

1

Cawt-2.9.6...sv.vbs

windows10-2004-x64

1

Cawt-2.9.6...ml.vbs

windows7-x64

1

Cawt-2.9.6...ml.vbs

windows10-2004-x64

1

Cawt-2.9.6...aw.vbs

windows7-x64

1

Cawt-2.9.6...aw.vbs

windows10-2004-x64

1

Cawt-2.9.6...le.vbs

windows7-x64

1

Cawt-2.9.6...le.vbs

windows10-2004-x64

1

Cawt-2.9.6...ki.vbs

windows7-x64

1

Cawt-2.9.6...ki.vbs

windows10-2004-x64

1

Analysis

max time kernel
148s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
01/09/2024, 20:12

Sharing

Copy URL Twitter E-mail

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

Cawt-2.9.6-User/Applications/AbbrExample.docx

Resource

win7-20240729-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

Cawt-2.9.6-User/Applications/AbbrExample.docx

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

Cawt-2.9.6-User/Applications/DocumentInfo.tcl

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Cawt-2.9.6-User/Applications/DocumentInfo.tcl

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Cawt-2.9.6-User/Applications/DocumentInfo.tcl

Resource

debian9-mipsbe-20240418-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Cawt-2.9.6-User/Applications/DocumentInfo.tcl

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Cawt-2.9.6-User/CawtCore/cawtBasic.vbs

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Cawt-2.9.6-User/CawtCore/cawtBasic.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Cawt-2.9.6-User/CawtCore/cawtEmbed.vbs

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Cawt-2.9.6-User/CawtCore/cawtEmbed.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Cawt-2.9.6-User/CawtCore/cawtFileUtil.vbs

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Cawt-2.9.6-User/CawtCore/cawtFileUtil.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Cawt-2.9.6-User/CawtCore/cawtImgUtil.vbs

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Cawt-2.9.6-User/CawtCore/cawtImgUtil.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Cawt-2.9.6-User/CawtCore/cawtInterpolate.vbs

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Cawt-2.9.6-User/CawtCore/cawtInterpolate.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Cawt-2.9.6-User/CawtCore/cawtStringUtil.vbs

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Cawt-2.9.6-User/CawtCore/cawtStringUtil.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Cawt-2.9.6-User/CawtCore/cawtTestUtil.vbs

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Cawt-2.9.6-User/CawtCore/cawtTestUtil.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Cawt-2.9.6-User/CawtExcel/excelBasic.vbs

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Cawt-2.9.6-User/CawtExcel/excelBasic.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Cawt-2.9.6-User/CawtExcel/excelCsv.vbs

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Cawt-2.9.6-User/CawtExcel/excelCsv.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Cawt-2.9.6-User/CawtExcel/excelHtml.vbs

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Cawt-2.9.6-User/CawtExcel/excelHtml.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Cawt-2.9.6-User/CawtExcel/excelImgRaw.vbs

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Cawt-2.9.6-User/CawtExcel/excelImgRaw.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Cawt-2.9.6-User/CawtExcel/excelMatlabFile.vbs

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Cawt-2.9.6-User/CawtExcel/excelMatlabFile.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Cawt-2.9.6-User/CawtExcel/excelMediaWiki.vbs

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Cawt-2.9.6-User/CawtExcel/excelMediaWiki.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Cawt-2.9.6-User/CawtCore/cawtBasic.vbs
Size

20KB
MD5

4be09b027e0e914910a2f7bbdad07dcf
SHA1

40da9c358072f7a21f55712c3ee8f146cf9e3065
SHA256

0f8be0103b575877c202012c7587a0054aa0d9f2b8c8b0ad0232ba70b0811c23
SHA512

ae4922a99a478935b979c6dad47d406c64d5176dbf387d2da91119f95a878ed7b251cd2787674d02af849fbd7d8c8d85ccb50e65f89898747925dfef23a236e1
SSDEEP

384:6F7AxnDcceq4IjFBznzUfmOLLrt4wds9u1Rou8ufhDRU0ed/GPi8xdGEevpzOKgr:6F7AxnDcceq4IjFBbAfmOLLrt4wdzWuL

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\Cawt-2.9.6-User\CawtCore\cawtBasic.vbs"
1⤵
PID:1608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy