Overview

overview

7

Static

static

3

windhawk_setup.exe

windows11-21h2-x64

7

Compiler/i...ing.js

windows11-21h2-x64

3

Compiler/i...iew.js

windows11-21h2-x64

3

Compiler/i...ion.js

windows11-21h2-x64

3

Compiler/i...ons.js

windows11-21h2-x64

3

Compiler/i...ice.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...und.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...ing.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...ent.js

windows11-21h2-x64

3

Compiler/i...ore.js

windows11-21h2-x64

3

Compiler/i...ore.js

windows11-21h2-x64

3

Compiler/i...get.js

windows11-21h2-x64

3

Compiler/i...und.js

windows11-21h2-x64

3

Compiler/i...ion.js

windows11-21h2-x64

3

Compiler/i...hic.js

windows11-21h2-x64

3

Compiler/i...een.js

windows11-21h2-x64

3

Compiler/i...der.js

windows11-21h2-x64

3

Compiler/i...nts.js

windows11-21h2-x64

3

Compiler/i...hic.js

windows11-21h2-x64

3

Compiler/i...ace.js

windows11-21h2-x64

3

Compiler/i...tes.js

windows11-21h2-x64

3

Compiler/i...ore.js

windows11-21h2-x64

3

Compiler/i...ent.js

windows11-21h2-x64

3

Compiler/i...ces.js

windows11-21h2-x64

3

Compiler/i...ore.js

windows11-21h2-x64

3

Compiler/i...ure.js

windows11-21h2-x64

3

Compiler/i...D11.js

windows11-21h2-x64

3

Resubmissions

05/10/2024, 17:22 UTC

241005-vx29ssseke 7

05/10/2024, 17:21 UTC

241005-vw7g5axfkn 4

Analysis

  • max time kernel
    146s
  • max time network
    150s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    05/10/2024, 17:22 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Compiler/include/winrt/Windows.ApplicationModel.DataTransfer.DragDrop.Core.js

  • Size

    35KB

  • MD5

    77642bbf8f1a194b66bac7c3eca49c8d

  • SHA1

    e9ebe99949f1228c81397cb3430e9b0021efa962

  • SHA256

    dfabfdfe0efbe4d75794fcf8833f79a5b2c5c2ef3ed1cd8d261f0681995123e4

  • SHA512

    805f89b84a7ede25960009ebe4a2a62853030348701601b5578d64e1e034ab39d9448c4d8101820d36db556e48dd527b421d170fe105eb9c18cbcc89236c4f1a

  • SSDEEP

    768:UTf5IG8Qn6xnqQA/ONIOPPlssOnWhqu8iQ:UVp

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\Compiler\include\winrt\Windows.ApplicationModel.DataTransfer.DragDrop.Core.js
    1⤵
      PID:2312

    Network

    • flag-us
      DNS
      43.229.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      43.229.111.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      104.246.116.51.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      104.246.116.51.in-addr.arpa
      IN PTR
      Response
    No results found
    • 8.8.8.8:53
      43.229.111.52.in-addr.arpa
      dns
      145 B
       317 B
       2
      2

      DNS Request

      43.229.111.52.in-addr.arpa

      DNS Request

      104.246.116.51.in-addr.arpa

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.