639a17eed5125ced4bd08a468204732fa2d37d42d3a47465d22f3afe45b7c7a1 | Triage

Resubmissions

21/11/2024, 02:56

241121-dfcjdaxfnb 8

21/11/2024, 02:55

241121-destzaxfme 1

21/11/2024, 02:39

241121-c5hagsxenf 3

21/11/2024, 02:38

241121-c42yhaxrfv 3

21/11/2024, 02:35

241121-c3gwyasncl 3

21/11/2024, 02:23

241121-cvcl9axqh1 3

21/11/2024, 02:17

241121-cq22caxqgz 3

Analysis

max time kernel
430s
max time network
1152s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
21/11/2024, 02:23

Sharing

Report Analysis Logs

General

Target

du-store-main/backend/routes/printfulRoute.js
Size

7KB
MD5

bfefc959f975cbaebea678d4447c5cd4
SHA1

b9b32bf84598ed74c559858d3924157df4ac5633
SHA256

e284e890a2f460a97e8700d070d2ba85ae504ec7837dc880b1c5c43666993a14
SHA512

9fa93c00dd0d7bf221d05512a9627de8ee0a98919b4bcb1468b225b7d23c0a0a54529be1ca0472e6af5872c22ac7a592a0c5325b5f40f16615bae9efd283e40b
SSDEEP

96:HO1Kk5uKiKAK1KKaYkKAV0Xc7oa+q/D/eX8AidJYPogtmHgytr8zR:u1EJR5vzV0s7oaT/D/i8BdQoJ+l

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\du-store-main\backend\routes\printfulRoute.js
1⤵
PID:5544

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads