Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
24-10-2024 13:15
Static task
static1
Behavioral task
behavioral1
Sample
c3d797e67edf0dd435808f2f79ff4bfd0cf9177307f4a112b7da09f7dfdd8f2e.js
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
c3d797e67edf0dd435808f2f79ff4bfd0cf9177307f4a112b7da09f7dfdd8f2e.js
Resource
win10v2004-20241007-en
General
-
Target
c3d797e67edf0dd435808f2f79ff4bfd0cf9177307f4a112b7da09f7dfdd8f2e.js
-
Size
5.2MB
-
MD5
a495fbc9b99c98d0a054e937d4dcb944
-
SHA1
b2a2433591576985adce5da344d72ae669a9cc5f
-
SHA256
c3d797e67edf0dd435808f2f79ff4bfd0cf9177307f4a112b7da09f7dfdd8f2e
-
SHA512
67ffdf2a2541127bcd1cf05b8f4c47e99844fb9a01ec33d5ff538e6a176eade5636f20c096e783f5d1c5b849ec2ee952a89a3fc35286d1e0e1000c0a21d39c6a
-
SSDEEP
49152:OCz4F9dM2furCz4F9dM2fuVCz4F9dM2furCz4F9dM2fu+Cz4F9dM2furCz4F9dMW:OkGgkGMkGgkGbkGgkGMkGgkG9
Malware Config
Signatures
-
Blocklisted process makes network request 4 IoCs
Processes:
wscript.exeflow pid Process 5 2316 wscript.exe 6 2316 wscript.exe 7 2316 wscript.exe 8 2316 wscript.exe -
Command and Scripting Interpreter: JavaScript 1 TTPs