6d11d8339ed8917190ba15dfbdf12c46d0a9d90b4b680edf54a8c65585e76e74 | Triage

Submit
Reports

Overview

overview

Static

static

3

Zorara.zip

windows7-x64

1

Zorara.zip

windows10-2004-x64

Application.bat

windows7-x64

6

Application.bat

windows10-2004-x64

cfg.js

windows7-x64

3

cfg.js

windows10-2004-x64

3

lua51.dll

windows7-x64

1

lua51.dll

windows10-2004-x64

1

luajit.exe

windows7-x64

1

luajit.exe

windows10-2004-x64

1

Resubmissions

26-11-2024 19:04

241126-xreyesvlbt 10

26-11-2024 19:02

241126-xp6y5a1lgm 7

Analysis

max time kernel
94s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
26-11-2024 19:04

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Zorara.zip

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Zorara.zip

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

20 signatures

150 seconds

Behavioral task

behavioral3

Sample

Application.bat

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

Application.bat

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

16 signatures

150 seconds

Behavioral task

behavioral5

Sample

cfg.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

cfg.js

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

lua51.dll

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

lua51.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

luajit.exe

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

luajit.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

cfg.js
Size

220KB
MD5

02c099ed621a95bd3d10ba5df143c137
SHA1

714b1f835cbafc55ce8ea4b8a65d855c652536b4
SHA256

be27274aef2547575ee05db27a1f40054190c5cc7e36d1da6936fe6d8478f22b
SHA512

4c3b5d9164b5ee51bb6bf08767de6e92cd706f34ce8e8ef44b007a8e92aac80d1c6df6ab3aa3e4329d9789207e0ebc3fc51474660c53aa8d98e6d3ccc2cc7896
SSDEEP

6144:S9cnz6rpQ22oLH9fKvJ3MNs5RvEPPuFuqP5JWN14do9:7nezj4Xmf

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\cfg.js
1⤵
PID:2064

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy