Analysis
-
max time kernel
149s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
17-10-2024 08:35
Static task
static1
Behavioral task
behavioral1
Sample
sample.js
Resource
win7-20240729-en
windows7-x64
3 signatures
150 seconds
General
-
Target
sample.js
-
Size
15KB
-
MD5
9c59057e35d4209fac0bb09c50aeda85
-
SHA1
4efd9657e881f16e3db3041b49ff4bbe2e877ce1
-
SHA256
c2480e2a74a9154bce57bf5be76ee695f484394c4dd74cf1412fc075ad4d0199
-
SHA512
6f36acb254f9c837fd608938a0ae337f1fafc5c19e5446be9c24eedf8bd640623ade6623985e9833175f26fe16b1071196dc77ce7d66793d20221678c9862f5a
-
SSDEEP
384:VzPAwNXah5c7xIJrCobwCvVFpw4UMa8Ua3yITwPhvcYXDuH2TTZLIQjFgdtJ1W0F:BPA0Xao76JCobwCvVFpw4UMxfyITwPh2
Malware Config
Signatures
-
Blocklisted process makes network request 16 IoCs
flow pid Process 7 2136 wscript.exe 22 2136 wscript.exe 29 2136 wscript.exe 32 2136 wscript.exe 44 2136 wscript.exe 45 2136 wscript.exe 46 2136 wscript.exe 54 2136 wscript.exe 55 2136 wscript.exe 56 2136 wscript.exe 67 2136 wscript.exe 74 2136 wscript.exe 75 2136 wscript.exe 76 2136 wscript.exe 77 2136 wscript.exe 78 2136 wscript.exe -
Command and Scripting Interpreter: JavaScript 1 TTPs