e60928dee71b11866a826bc474a72b928327d1378ea80319819217cebcd53b2a

Submit
Reports

Overview

overview

Static

static

windhawk_setup.exe

windows11-21h2-x64

Compiler/i...ing.js

windows11-21h2-x64

Compiler/i...iew.js

windows11-21h2-x64

Compiler/i...ion.js

windows11-21h2-x64

Compiler/i...ons.js

windows11-21h2-x64

Compiler/i...ice.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...und.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...ing.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...ent.js

windows11-21h2-x64

Compiler/i...ore.js

windows11-21h2-x64

Compiler/i...ore.js

windows11-21h2-x64

Compiler/i...get.js

windows11-21h2-x64

Compiler/i...und.js

windows11-21h2-x64

Compiler/i...ion.js

windows11-21h2-x64

Compiler/i...hic.js

windows11-21h2-x64

Compiler/i...een.js

windows11-21h2-x64

Compiler/i...der.js

windows11-21h2-x64

Compiler/i...nts.js

windows11-21h2-x64

Compiler/i...hic.js

windows11-21h2-x64

Compiler/i...ace.js

windows11-21h2-x64

Compiler/i...tes.js

windows11-21h2-x64

Compiler/i...ore.js

windows11-21h2-x64

Compiler/i...ent.js

windows11-21h2-x64

Compiler/i...ces.js

windows11-21h2-x64

Compiler/i...ore.js

windows11-21h2-x64

Compiler/i...ure.js

windows11-21h2-x64

Compiler/i...D11.js

windows11-21h2-x64

Resubmissions

05-10-2024 17:22

241005-vx29ssseke 7

05-10-2024 17:21

241005-vw7g5axfkn 4

Analysis

max time kernel
149s
max time network
154s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
05-10-2024 17:22

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

windhawk_setup.exe

Resource

win11-20240802-en

discovery execution

windows11-21h2-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

Compiler/include/wil/windowing.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

Compiler/include/winrt/Windows.AI.MachineLearning.Preview.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Compiler/include/winrt/Windows.ApplicationModel.Activation.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

Compiler/include/winrt/Windows.ApplicationModel.AppExtensions.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

Compiler/include/winrt/Windows.ApplicationModel.AppService.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

Compiler/include/winrt/Windows.ApplicationModel.Appointments.AppointmentsProvider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

Compiler/include/winrt/Windows.ApplicationModel.Appointments.DataProvider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

Compiler/include/winrt/Windows.ApplicationModel.Calls.Background.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

Compiler/include/winrt/Windows.ApplicationModel.Calls.Provider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

Compiler/include/winrt/Windows.ApplicationModel.CommunicationBlocking.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

Compiler/include/winrt/Windows.ApplicationModel.Contacts.DataProvider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

Compiler/include/winrt/Windows.ApplicationModel.Contacts.Provider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

Compiler/include/winrt/Windows.ApplicationModel.ConversationalAgent.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

Compiler/include/winrt/Windows.ApplicationModel.Core.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

Compiler/include/winrt/Windows.ApplicationModel.DataTransfer.DragDrop.Core.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

Compiler/include/winrt/Windows.ApplicationModel.DataTransfer.ShareTarget.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

Compiler/include/winrt/Windows.ApplicationModel.ExtendedExecution.Foreground.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

Compiler/include/winrt/Windows.ApplicationModel.ExtendedExecution.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

Compiler/include/winrt/Windows.ApplicationModel.Holographic.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

Compiler/include/winrt/Windows.ApplicationModel.LockScreen.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

Compiler/include/winrt/Windows.ApplicationModel.Payments.Provider.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

Compiler/include/winrt/Windows.ApplicationModel.Payments.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

Compiler/include/winrt/Windows.ApplicationModel.Preview.Holographic.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

Compiler/include/winrt/Windows.ApplicationModel.Preview.InkWorkspace.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

Compiler/include/winrt/Windows.ApplicationModel.Preview.Notes.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

Compiler/include/winrt/Windows.ApplicationModel.Resources.Core.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

Compiler/include/winrt/Windows.ApplicationModel.Resources.Management.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

Compiler/include/winrt/Windows.ApplicationModel.Resources.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

Compiler/include/winrt/Windows.ApplicationModel.Search.Core.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

Compiler/include/winrt/Windows.Graphics.Capture.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

Compiler/include/winrt/Windows.Graphics.DirectX.Direct3D11.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

Compiler/include/winrt/Windows.ApplicationModel.Contacts.DataProvider.js
Size

39KB
MD5

d9daa0d3f76c61de2627d88489449157
SHA1

8061dfe11f6705f0d33b617b30c51d879fdb9e35
SHA256

f3a8506aff4a9dfab04a00f34109de8f7a8e8433db14d4b4ce4d87901c51b9f3
SHA512

96de6ca58033ebb6b96c5ae4c131bd686478f1fc7d62f47e732dffa3e0171837cccbabd45c99d981c758fcc457c09a9615c9e4a6074f89857cf272d7cf1636b2
SSDEEP

192:tgi9UCkxZpv4vULkxZUOvUhevLvUGkxFpv0vU/kxFKavUdevBvULvtvUXkxmpv5y:gyUhXCKJu5bFw+WpntBt

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\Compiler\include\winrt\Windows.ApplicationModel.Contacts.DataProvider.js
1⤵
PID:3320

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads