2307c4119e4aba798b67546b161a41fabb05a79e0ba96b09b5bd48cdb012eb1c

Submit
Reports

Overview

overview

Static

static

Wave Launcher.exe

windows10-ltsc 2021-x64

$PLUGINSDI...er.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

$PLUGINSDIR/app-64.7z

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...ry.dll

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...try.js

windows10-ltsc 2021-x64

resources/...e3.dll

windows10-ltsc 2021-x64

resources/...act.js

windows10-ltsc 2021-x64

resources/...ing.js

windows10-ltsc 2021-x64

resources/...te3.js

windows10-ltsc 2021-x64

resources/...ace.js

windows10-ltsc 2021-x64

resources/...kup.js

windows10-ltsc 2021-x64

resources/...bin.js

windows10-ltsc 2021-x64

resources/...dex.js

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...pi.dll

windows10-ltsc 2021-x64

resources/...kip.js

windows10-ltsc 2021-x64

resources/elevate.exe

windows10-ltsc 2021-x64

vk_swiftshader.dll

windows10-ltsc 2021-x64

vulkan-1.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

$PLUGINSDI...7z.dll

windows10-ltsc 2021-x64

$R0/Uninst...fu.exe

windows10-ltsc 2021-x64

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

Analysis

max time kernel
107s
max time network
144s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241211-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
03-01-2025 08:55

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Wave Launcher.exe

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

42 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10ltsc2021-20241023-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/app-64.7z

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/app.asar.unpacked/node_modules/@primno/dpapi/dist/index.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/app.asar.unpacked/node_modules/@primno/dpapi/prebuilds/win32-x64/node.napi.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/app.asar.unpacked/node_modules/registry-js/build/Release/registry.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/index.js

Resource

win10ltsc2021-20241023-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/registry.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/app.asar.unpacked/node_modules/sqlite3/build/Release/node_sqlite3.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/app.asar.unpacked/node_modules/sqlite3/deps/extract.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/sqlite3-binding.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/sqlite3.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/app.asar.unpacked/node_modules/sqlite3/lib/trace.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/app.asar.unpacked/node_modules/sqlite3/src/backup.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/app.asar.unpacked/node_modules/win-version-info/bin.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/app.asar.unpacked/node_modules/win-version-info/index.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/app.asar.unpacked/node_modules/win-version-info/prebuilds/win32-ia32/node.napi.dll

Resource

win10ltsc2021-20241023-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/app.asar.unpacked/node_modules/win-version-info/prebuilds/win32-x64/node.napi.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/win-version-info/skip.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/elevate.exe

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

vk_swiftshader.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

vulkan-1.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

$R0/Uninstall DesktopWaifu.exe

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

9 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/System.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10ltsc2021-20241211-en

discovery

windows10-ltsc 2021-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

resources/app.asar.unpacked/node_modules/registry-js/dist/lib/registry.js
Size

5KB
MD5

7084662c3e6624dae025c24f4d307854
SHA1

860f0a84208663d434671e9b94048ee57a00997e
SHA256

41589ec896a2d3b80311fc2325e1385f9d91dd15d0bf384c85dda403ac3e7871
SHA512

a7e9dd3acdf0df55cc14cb45e253be10bc2872ffde9ed90ee11475aa3e086e9c94a023b2d435fdbaaccba2dab6e9074e4a0dcb68d09b98bfb9cde70abeaf9de9
SSDEEP

96:LCQ80Gl/9mXgGkQSIsIEm1ymhva3apxrMepAHIetaFD0rrptetf+M7WZC85M7dZJ:LCHplQZyIsexrMepAHIetWD+rptetf5j

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\resources\app.asar.unpacked\node_modules\registry-js\dist\lib\registry.js
1⤵
PID:1896

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads