2307c4119e4aba798b67546b161a41fabb05a79e0ba96b09b5bd48cdb012eb1c

Submit
Reports

Overview

overview

Static

static

Wave Launcher.exe

windows10-ltsc 2021-x64

$PLUGINSDI...er.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

$PLUGINSDIR/app-64.7z

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...ry.dll

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...try.js

windows10-ltsc 2021-x64

resources/...e3.dll

windows10-ltsc 2021-x64

resources/...act.js

windows10-ltsc 2021-x64

resources/...ing.js

windows10-ltsc 2021-x64

resources/...te3.js

windows10-ltsc 2021-x64

resources/...ace.js

windows10-ltsc 2021-x64

resources/...kup.js

windows10-ltsc 2021-x64

resources/...bin.js

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...kip.js

windows10-ltsc 2021-x64

resources/elevate.exe

windows10-ltsc 2021-x64

vk_swiftshader.dll

windows10-ltsc 2021-x64

vulkan-1.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

$PLUGINSDI...7z.dll

windows10-ltsc 2021-x64

$R0/Uninst...fu.exe

windows10-ltsc 2021-x64

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

Analysis

max time kernel
95s
max time network
156s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241023-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
03-01-2025 08:55

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Wave Launcher.exe

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

42 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10ltsc2021-20241023-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/app-64.7z

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/app.asar.unpacked/node_modules/@primno/dpapi/dist/index.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/app.asar.unpacked/node_modules/@primno/dpapi/prebuilds/win32-x64/node.napi.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/app.asar.unpacked/node_modules/registry-js/build/Release/registry.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/index.js

Resource

win10ltsc2021-20241023-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/registry.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/app.asar.unpacked/node_modules/sqlite3/build/Release/node_sqlite3.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/app.asar.unpacked/node_modules/sqlite3/deps/extract.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/sqlite3-binding.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/sqlite3.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/trace.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/app.asar.unpacked/node_modules/sqlite3/src/backup.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/app.asar.unpacked/node_modules/win-version-info/bin.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/app.asar.unpacked/node_modules/win-version-info/index.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/app.asar.unpacked/node_modules/win-version-info/prebuilds/win32-ia32/node.napi.dll

Resource

win10ltsc2021-20241023-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/app.asar.unpacked/node_modules/win-version-info/prebuilds/win32-x64/node.napi.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/win-version-info/skip.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/elevate.exe

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

vk_swiftshader.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

vulkan-1.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

$R0/Uninstall DesktopWaifu.exe

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

9 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/System.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/index.js
Size

658B
MD5

1b753840717ba9708d4afbfed7c5ecae
SHA1

188caa6d370515112ec3818cf89ce10a04712ae5
SHA256

f8a6cc69584e07a08a4e72ba1c89bfe791af854a62d2085f230a95a6e2ed8da4
SHA512

264f46934d2f96b2b5f0399e991fef48ebc8c8d2292f58fcc8d39b4a27734b2a2f667f2e706b851ca8fb3a54027561ef3f305fa357dc6275001257113efb7c60

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\resources\app.asar.unpacked\node_modules\registry-js\dist\lib\index.js
1⤵
PID:3332

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads