0f81b2681475f1014dddda909b1a95b2b83d3f70e502bdc23256016a8d188d4b | Triage

Submit
Reports

Overview

overview

3

Static

static

1

tmblog3/up...eme.js

windows7-x64

3

tmblog3/up...eme.js

windows10-2004-x64

3

tmblog3/up...ree.js

windows7-x64

3

tmblog3/up...ree.js

windows10-2004-x64

3

tmblog3/up...ook.js

windows7-x64

3

tmblog3/up...ook.js

windows10-2004-x64

3

tmblog3/up...css.js

windows7-x64

3

tmblog3/up...css.js

windows10-2004-x64

3

tmblog3/up...DnR.js

windows7-x64

3

tmblog3/up...DnR.js

windows10-2004-x64

3

tmblog3/up...min.js

windows7-x64

3

tmblog3/up...min.js

windows10-2004-x64

3

tmblog3/up...enu.js

windows7-x64

3

tmblog3/up...enu.js

windows10-2004-x64

3

tmblog3/up...nfo.js

windows7-x64

3

tmblog3/up...nfo.js

windows10-2004-x64

3

tmblog3/up...a_w.js

windows7-x64

3

tmblog3/up...a_w.js

windows10-2004-x64

3

tmblog3/up...tor.js

windows7-x64

3

tmblog3/up...tor.js

windows10-2004-x64

3

tmblog3/up...ret.js

windows7-x64

3

tmblog3/up...ret.js

windows10-2004-x64

3

tmblog3/up...ote.js

windows7-x64

3

tmblog3/up...ote.js

windows10-2004-x64

3

tmblog3/up...mon.js

windows7-x64

3

tmblog3/up...mon.js

windows10-2004-x64

3

tmblog3/up...t.html

windows7-x64

3

tmblog3/up...t.html

windows10-2004-x64

3

tmblog3/up...r.html

windows7-x64

3

tmblog3/up...r.html

windows10-2004-x64

3

tmblog3/up...n.html

windows7-x64

3

tmblog3/up...n.html

windows10-2004-x64

3

Analysis

max time kernel
135s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
19-09-2024 14:09

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

tmblog3/upfile/admin/ThemeXP/theme.js

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmblog3/upfile/admin/ThemeXP/theme.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

tmblog3/upfile/admin/Tree.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

tmblog3/upfile/admin/Tree.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

tmblog3/upfile/admin/book.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

tmblog3/upfile/admin/book.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

tmblog3/upfile/admin/images/js/css.js

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

tmblog3/upfile/admin/images/js/css.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

tmblog3/upfile/admin/images/js/jqDnR.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

tmblog3/upfile/admin/images/js/jqDnR.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

tmblog3/upfile/admin/images/js/jquery.min.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

tmblog3/upfile/admin/images/js/jquery.min.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

tmblog3/upfile/admin/images/js/menu.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

tmblog3/upfile/admin/images/js/menu.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

tmblog3/upfile/admin/info.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

tmblog3/upfile/admin/info.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

tmblog3/upfile/admin/photoa_w.js

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

tmblog3/upfile/admin/photoa_w.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

tmblog3/upfile/admin/photor.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

tmblog3/upfile/admin/photor.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

tmblog3/upfile/admin/ret.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

tmblog3/upfile/admin/ret.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

tmblog3/upfile/admin/vote.js

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

tmblog3/upfile/admin/vote.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

tmblog3/upfile/fckeditor/editor/dialog/common/fck_dialog_common.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

tmblog3/upfile/fckeditor/editor/dialog/common/fck_dialog_common.js

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_about.html

Resource

win7-20240704-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral28

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_about.html

Resource

win10v2004-20240802-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral29

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_anchor.html

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral30

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_anchor.html

Resource

win10v2004-20240802-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral31

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_button.html

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

tmblog3/upfile/fckeditor/editor/dialog/fck_button.html

Resource

win10v2004-20240802-en

windows10-2004-x64

7 signatures

150 seconds

Report Analysis Logs

General

Target

tmblog3/upfile/admin/Tree.js
Size

12KB
MD5

f97c12620248d45701cddbcaa239b66a
SHA1

a1c73e1f45e1599487b73082a2450b53be14b394
SHA256

ab41b3a4a2b87ce99a3e8c61e813d1f64469ef642a74043b9127d36cd2dbf044
SHA512

f432047f20065c6a1daea7047b13e9f55d72bb780ef21d4f6e2831803a609865d12d8be3c603166d708392297db51abbd74ff7d707d44582e08decae02ad2574
SSDEEP

384:koAWVfkSA1RTV1hdnZ7GAbAvaYAAY3qjcIu:koACkSAL7Z79xq4Iu

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\tmblog3\upfile\admin\Tree.js
1⤵
PID:3604

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy