b8d578da584b1afde9cd29f599685a01b4f4524f309addff244931eeb87de95e

Analysis

max time kernel
118s
max time network
118s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
01-10-2024 19:40

Target

MyCase_09.2024_77.js
Size

396KB
MD5

6b915dedbcbafa6ea29de46eca105968
SHA1

41c1ef4eca2607cdebaf3029a134102bbc8633ec
SHA256

b8d578da584b1afde9cd29f599685a01b4f4524f309addff244931eeb87de95e
SHA512

35f98d93463a4ae01bb2b3989452ffa2eef5280e4a02bc7abf79f20cbac98c5b4dcf58ef81d2a8d5b4283bc5cbc985971f9159a77c530020bc96f14125066425
SSDEEP

6144:YtmEdkq+uqmUdQbADBXXr/6C8sPqe0gQNR:DRXdcANrbwgQNR

Score

8^/10

execution

Blocklisted process makes network request 2 IoCs

flow	pid	Process
2	2364	wscript.exe
4	2364	wscript.exe

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\MyCase_09.2024_77.js
1⤵
- Blocklisted process makes network request
PID:2364

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact