Overview

overview

8

Static

static

1

Item-Deliv...oc.wsf

windows7-x64

8

Item-Deliv...oc.wsf

windows10-2004-x64

8

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30-11-2024 05:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Item-Delivery-Details-01466011.doc.wsf

  • Size

    625B

  • MD5

    8536c8b56bd28f0e13719df0fdcc7219

  • SHA1

    c5fda65d806beca2f64357eaa9f42b95378fb6e8

  • SHA256

    57aa3657804562be3e0692bda2d10203a4c816c589c9e01abf1c9a3a09f86796

  • SHA512

    3ff39ffc41d485a6056c9df946d4fbc49a788e864af4d72de8caa7fea159b85257d4a071e467d93e6b1ab106919c0cab9d2b5e9776b30531e77595c72b7ab560

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 11 IoCs
  • Modifies system certificate store 2 TTPs 4 IoCs
    evasionspywaretrojan

Processes

  • C:\Windows\System32\WScript.exe
    "C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\Item-Delivery-Details-01466011.doc.wsf"
    1⤵
    • Blocklisted process makes network request
    • Modifies system certificate store
    PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads