Overview

overview

3

Static

static

3

SynapseXRe...ace.js

windows7-x64

3

SynapseXRe...ace.js

windows10-2004-x64

3

SynapseXRe...ify.js

windows7-x64

3

SynapseXRe...ify.js

windows10-2004-x64

3

SynapseXRe...ens.js

windows7-x64

3

SynapseXRe...ens.js

windows10-2004-x64

3

SynapseXRe...ite.js

windows7-x64

3

SynapseXRe...ite.js

windows10-2004-x64

3

SynapseXRe...met.js

windows7-x64

3

SynapseXRe...met.js

windows10-2004-x64

3

SynapseXRe...ker.js

windows7-x64

3

SynapseXRe...ker.js

windows10-2004-x64

3

SynapseXRe...enu.js

windows7-x64

3

SynapseXRe...enu.js

windows10-2004-x64

3

SynapseXRe...ols.js

windows7-x64

3

SynapseXRe...ols.js

windows10-2004-x64

3

SynapseXRe...ing.js

windows7-x64

3

SynapseXRe...ing.js

windows10-2004-x64

3

SynapseXRe...ist.js

windows7-x64

3

SynapseXRe...ist.js

windows10-2004-x64

3

SynapseXRe...ons.js

windows7-x64

3

SynapseXRe...ons.js

windows10-2004-x64

3

SynapseXRe...mpt.js

windows7-x64

3

SynapseXRe...mpt.js

windows10-2004-x64

3

SynapseXRe...rtl.js

windows7-x64

3

SynapseXRe...rtl.js

windows10-2004-x64

3

SynapseXRe...box.js

windows7-x64

3

SynapseXRe...box.js

windows10-2004-x64

3

SynapseXRe...enu.js

windows7-x64

3

SynapseXRe...enu.js

windows10-2004-x64

3

SynapseXRe...eck.js

windows7-x64

3

SynapseXRe...eck.js

windows10-2004-x64

3

Resubmissions

25/09/2024, 14:55 UTC

240925-sakp5avcrg 3

Analysis

  • max time kernel
    122s
  • max time network
    134s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/09/2024, 14:55 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SynapseXRemakeV2.1/Ace/ace/ext-options.js

  • Size

    24KB

  • MD5

    2f5befaf500898a836ccd5d923164986

  • SHA1

    dd812334d2a173dbf24caa73adc1438a596ff38b

  • SHA256

    6dc683f92388f86e640b0a14ba6b75c5b0f94aed24ccffc4ba5f8eb529e32aa3

  • SHA512

    14dab1a7da67fa4f2dfafb29c56872c6cf8b1af3afd8ff44fdd8a2a6632964fd40d73ff314e1c610cb998ed68241f15c395ac2f9826947f8727b77c52ab91aad

  • SSDEEP

    384:mzeKcUnzT9VcsrkiR0O42gk3UruOVD4FgLvg39wTN7ZrosesnRRDlZTQnjuO7:m6KxnSkGg3mJ5nZTQaQ

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\SynapseXRemakeV2.1\Ace\ace\ext-options.js
    1⤵
      PID:3728
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3924,i,3861745594156495651,17595114179815238301,262144 --variations-seed-version --mojo-platform-channel-handle=2508 /prefetch:8
      1⤵
        PID:2608

      Network

      • flag-us
        DNS
        8.8.8.8.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        8.8.8.8.in-addr.arpa
        IN PTR
        Response
        8.8.8.8.in-addr.arpa
        IN PTR
        dnsgoogle
      • flag-us
        DNS
        104.219.191.52.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        104.219.191.52.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        83.210.23.2.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        83.210.23.2.in-addr.arpa
        IN PTR
        Response
        83.210.23.2.in-addr.arpa
        IN PTR
        a2-23-210-83deploystaticakamaitechnologiescom
      • flag-us
        DNS
        76.32.126.40.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        76.32.126.40.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        95.221.229.192.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        95.221.229.192.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        196.249.167.52.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        196.249.167.52.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        197.87.175.4.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        197.87.175.4.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        18.31.95.13.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        18.31.95.13.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        68.209.201.84.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        68.209.201.84.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        23.236.111.52.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        23.236.111.52.in-addr.arpa
        IN PTR
        Response
      • flag-us
        DNS
        172.214.232.199.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        172.214.232.199.in-addr.arpa
        IN PTR
        Response
      No results found
      • 8.8.8.8:53
        8.8.8.8.in-addr.arpa
        dns
        66 B
         90 B
         1
        1

        DNS Request

        8.8.8.8.in-addr.arpa

      • 8.8.8.8:53
        104.219.191.52.in-addr.arpa
        dns
        73 B
         147 B
         1
        1

        DNS Request

        104.219.191.52.in-addr.arpa

      • 8.8.8.8:53
        83.210.23.2.in-addr.arpa
        dns
        70 B
         133 B
         1
        1

        DNS Request

        83.210.23.2.in-addr.arpa

      • 8.8.8.8:53
        76.32.126.40.in-addr.arpa
        dns
        71 B
         157 B
         1
        1

        DNS Request

        76.32.126.40.in-addr.arpa

      • 8.8.8.8:53
        95.221.229.192.in-addr.arpa
        dns
        73 B
         144 B
         1
        1

        DNS Request

        95.221.229.192.in-addr.arpa

      • 8.8.8.8:53
        196.249.167.52.in-addr.arpa
        dns
        73 B
         147 B
         1
        1

        DNS Request

        196.249.167.52.in-addr.arpa

      • 8.8.8.8:53
        197.87.175.4.in-addr.arpa
        dns
        71 B
         157 B
         1
        1

        DNS Request

        197.87.175.4.in-addr.arpa

      • 8.8.8.8:53
        18.31.95.13.in-addr.arpa
        dns
        70 B
         144 B
         1
        1

        DNS Request

        18.31.95.13.in-addr.arpa

      • 8.8.8.8:53
        68.209.201.84.in-addr.arpa
        dns
        72 B
         132 B
         1
        1

        DNS Request

        68.209.201.84.in-addr.arpa

      • 8.8.8.8:53
        23.236.111.52.in-addr.arpa
        dns
        72 B
         158 B
         1
        1

        DNS Request

        23.236.111.52.in-addr.arpa

      • 8.8.8.8:53
        172.214.232.199.in-addr.arpa
        dns
        74 B
         128 B
         1
        1

        DNS Request

        172.214.232.199.in-addr.arpa

      MITRE ATT&CK Enterprise v15

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      We care about your privacy.

      This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.