364c3d70f3abb91efb1559952cba473f2563e6593841527c6aadf900f148b85d | Triage

Submit
Reports

Overview

overview

8

Static

static

1

js/535.bundle.js

windows10-ltsc 2021-x64

8

js/75.bundle.js

windows10-ltsc 2021-x64

3

js/968.bundle.js

windows10-ltsc 2021-x64

3

js/bext/pu...der.js

windows10-ltsc 2021-x64

3

js/bext/vp...ola.js

windows10-ltsc 2021-x64

3

js/bext/vp...one.js

windows10-ltsc 2021-x64

3

js/bg.824.bundle.js

windows10-ltsc 2021-x64

3

js/bg.881.bundle.js

windows10-ltsc 2021-x64

3

js/bg.bg.bundle.js

windows10-ltsc 2021-x64

3

js/bg.conf.bundle.js

windows10-ltsc 2021-x64

3

js/bg.html

windows10-ltsc 2021-x64

4

js/bg.vend...dle.js

windows10-ltsc 2021-x64

3

js/conf.bundle.js

windows10-ltsc 2021-x64

3

js/locales.bundle.js

windows10-ltsc 2021-x64

3

js/login_done.html

windows10-ltsc 2021-x64

4

js/mitm.bundle.js

windows10-ltsc 2021-x64

3

js/mitm.html

windows10-ltsc 2021-x64

4

js/popup.html

windows10-ltsc 2021-x64

4

js/ui.bundle.js

windows10-ltsc 2021-x64

3

js/vendors.bundle.js

windows10-ltsc 2021-x64

3

Analysis

max time kernel
1364s
max time network
1426s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241023-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
08-11-2024 09:05

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

js/535.bundle.js

Resource

win10ltsc2021-20241023-en

adware discovery evasion execution persistence phishing privilege_escalation stealer trojan

windows10-ltsc 2021-x64

40 signatures

1800 seconds

Behavioral task

behavioral2

Sample

js/75.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral3

Sample

js/968.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral4

Sample

js/bext/pub/pre_loader.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral5

Sample

js/bext/vpn/bg/cs_hola.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral6

Sample

js/bext/vpn/ui/login_done.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral7

Sample

js/bg.824.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral8

Sample

js/bg.881.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral9

Sample

js/bg.bg.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral10

Sample

js/bg.conf.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral11

Sample

js/bg.html

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

10 signatures

1800 seconds

Behavioral task

behavioral12

Sample

js/bg.vendors.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral13

Sample

js/conf.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral14

Sample

js/locales.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral15

Sample

js/login_done.html

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

10 signatures

1800 seconds

Behavioral task

behavioral16

Sample

js/mitm.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral17

Sample

js/mitm.html

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

10 signatures

1800 seconds

Behavioral task

behavioral18

Sample

js/popup.html

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

10 signatures

1800 seconds

Behavioral task

behavioral19

Sample

js/ui.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Behavioral task

behavioral20

Sample

js/vendors.bundle.js

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

1 signatures

1800 seconds

Report Analysis Logs

General

Target

js/bg.bg.bundle.js
Size

1.2MB
MD5

e73a505c277281e2f0f6c2afd87b0f9a
SHA1

1a48129d72df3a68e964d05e712e326c23ef0c97
SHA256

05aaa8189bd4872e7effbcf346c4c99db1d58f711ff0ef2ddf05290ced678aff
SHA512

fba4c4c1fa486af11e9e9ed83bdfcc8d1232e5b98dce54e8f8d18f738b4be7c59c452fcb6276f3419f6120828406c7285cf6d99f98547df9795c2bec5fb9024b
SSDEEP

24576:YJYSYLuDvDBDaj8ZfHOSQZXjqp/6hOc/0uPlgHAzHE2kWyrDQYXH:YJYSYLuDvDBDaj8ZfHOSQZXjqp/6hOce

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\js\bg.bg.bundle.js
1⤵
PID:4404

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy