Overview

overview

10

Static

static

10

Encryptix-...ion.js

windows7-x64

3

Encryptix-...ion.js

windows10-2004-x64

3

Encryptix-...ers.js

windows7-x64

3

Encryptix-...ers.js

windows10-2004-x64

3

Encryptix-...nfo.js

windows7-x64

3

Encryptix-...nfo.js

windows10-2004-x64

3

Encryptix-...er.vbs

windows7-x64

1

Encryptix-...er.vbs

windows10-2004-x64

1

Encryptix-...Frm.js

windows7-x64

3

Encryptix-...Frm.js

windows10-2004-x64

3

Encryptix-...rm.vbs

windows7-x64

1

Encryptix-...rm.vbs

windows10-2004-x64

1

Encryptix-...rm.vbs

windows7-x64

1

Encryptix-...rm.vbs

windows10-2004-x64

1

Encryptix-...Frm.js

windows7-x64

3

Encryptix-...Frm.js

windows10-2004-x64

3

Encryptix-...rm.vbs

windows7-x64

1

Encryptix-...rm.vbs

windows10-2004-x64

1

Encryptix-...ter.js

windows7-x64

3

Encryptix-...ter.js

windows10-2004-x64

3

Encryptix-...er.vbs

windows7-x64

1

Encryptix-...er.vbs

windows10-2004-x64

1

Encryptix-...es.ps1

windows7-x64

3

Encryptix-...es.ps1

windows10-2004-x64

3

Encryptix-...uth.js

windows7-x64

3

Encryptix-...uth.js

windows10-2004-x64

3

Encryptix-...ub.ps1

windows7-x64

3

Encryptix-...ub.ps1

windows10-2004-x64

3

Encryptix-...I2.dll

windows7-x64

1

Encryptix-...I2.dll

windows10-2004-x64

1

Encryptix-...I2.dll

windows7-x64

1

Encryptix-...I2.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-09-2024 07:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Encryptix-Crypter-main/Encryptix Crypter/Properties/Resources.ps1

  • Size

    32KB

  • MD5

    24f07c7f22312040086a806c545123db

  • SHA1

    914506165541e4aeff387cdd48989d26fb985c06

  • SHA256

    07d1b41eb4b99de356fc03d6d665c4d89366ba5da0eb1a84c052a97a4956a1e6

  • SHA512

    41153d59f5135c323058a21130a8ec001c8f460d034ad1af22d112ae18993c260c3b971de14dd6e48f518616b25f20d77b4d4a3507937245a9945a237a9db794

  • SSDEEP

    384:xFCkjcQEDEyx0IaT+D8zZYuFiSFaIm0CQXc06YNVz6NhfA96Vpxz+uX0R1IAs3Y7:ijEy1aTAqZY8iAoNhfjVpgNR6As9Dq

Score
3/10
execution

Malware Config

Signatures

  • Command and Scripting Interpreter: PowerShell 1 TTPs 1 IoCs

    Using powershell.exe command.

    execution
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -ExecutionPolicy bypass -File "C:\Users\Admin\AppData\Local\Temp\Encryptix-Crypter-main\Encryptix Crypter\Properties\Resources.ps1"
    1⤵
    • Command and Scripting Interpreter: PowerShell
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2968-4-0x000007FEF553E000-0x000007FEF553F000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2968-5-0x000000001B5C0000-0x000000001B8A2000-memory.dmp

    Filesize

    2.9MB

    Download

  • memory/2968-8-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2968-9-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2968-7-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2968-10-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2968-6-0x0000000002860000-0x0000000002868000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2968-11-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2968-12-0x000007FEF5280000-0x000007FEF5C1D000-memory.dmp

    Filesize

    9.6MB

    Download