Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system -
submitted
17-10-2024 08:35
Static task
static1
Behavioral task
behavioral1
Sample
sample.js
Resource
win7-20240729-en
windows7-x64
3 signatures
150 seconds
General
-
Target
sample.js
-
Size
15KB
-
MD5
9c59057e35d4209fac0bb09c50aeda85
-
SHA1
4efd9657e881f16e3db3041b49ff4bbe2e877ce1
-
SHA256
c2480e2a74a9154bce57bf5be76ee695f484394c4dd74cf1412fc075ad4d0199
-
SHA512
6f36acb254f9c837fd608938a0ae337f1fafc5c19e5446be9c24eedf8bd640623ade6623985e9833175f26fe16b1071196dc77ce7d66793d20221678c9862f5a
-
SSDEEP
384:VzPAwNXah5c7xIJrCobwCvVFpw4UMa8Ua3yITwPhvcYXDuH2TTZLIQjFgdtJ1W0F:BPA0Xao76JCobwCvVFpw4UMxfyITwPh2
Malware Config
Signatures
-
Blocklisted process makes network request 18 IoCs
flow pid Process 5 2572 wscript.exe 6 2572 wscript.exe 7 2572 wscript.exe 9 2572 wscript.exe 10 2572 wscript.exe 11 2572 wscript.exe 13 2572 wscript.exe 14 2572 wscript.exe 15 2572 wscript.exe 17 2572 wscript.exe 18 2572 wscript.exe 19 2572 wscript.exe 21 2572 wscript.exe 22 2572 wscript.exe 23 2572 wscript.exe 25 2572 wscript.exe 26 2572 wscript.exe 27 2572 wscript.exe -
Command and Scripting Interpreter: JavaScript 1 TTPs