Overview

overview

10

Static

static

10

DiscordBot...64.exe

ubuntu-24.04-amd64

$PLUGINSDI...er.dll

ubuntu-24.04-amd64

$PLUGINSDI...ls.dll

ubuntu-24.04-amd64

$PLUGINSDI...em.dll

ubuntu-24.04-amd64

$PLUGINSDI...ll.dll

ubuntu-24.04-amd64

resources/...ags.js

ubuntu-24.04-amd64

3

resources/...eld.js

ubuntu-24.04-amd64

3

resources/...hop.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...ata.js

ubuntu-24.04-amd64

3

resources/...oto.js

ubuntu-24.04-amd64

3

resources/...til.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ags.js

ubuntu-24.04-amd64

3

resources/...tch.js

ubuntu-24.04-amd64

3

resources/...cts.js

ubuntu-24.04-amd64

3

resources/...til.js

ubuntu-24.04-amd64

3

resources/...ver.js

ubuntu-24.04-amd64

3

resources/...nts.js

ubuntu-24.04-amd64

3

resources/...oad.js

ubuntu-24.04-amd64

3

resources/...ent.js

ubuntu-24.04-amd64

3

resources/...ase.js

ubuntu-24.04-amd64

3

resources/...ges.js

ubuntu-24.04-amd64

3

resources/...ngs.js

ubuntu-24.04-amd64

3

resources/...ngs.js

ubuntu-24.04-amd64

3

resources/...dex.js

ubuntu-24.04-amd64

3

resources/...dex.js

ubuntu-24.04-amd64

3

$PLUGINSDI...ec.dll

ubuntu-24.04-amd64

$PLUGINSDI...7z.dll

ubuntu-24.04-amd64

$R0/Uninst...nt.exe

ubuntu-24.04-amd64

Analysis

  • max time kernel
    0s
  • max time network
    135s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    01-02-2025 16:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    resources/app/AppAssets/UserProfileEffects.js

  • Size

    161KB

  • MD5

    c50d3f3f60447cfb67019423f9f122b8

  • SHA1

    88d778a789b02f3f6e89d4e5cfd38331d00afb55

  • SHA256

    d7399ef1e0d43d78b768725e43176db58cbed07e604262489e46ad352466fd80

  • SHA512

    b131ad403239f22eaf15f0cbe7ae88da8850298e89fe4355dc29235beb540122f3b8c06164124954ec1747a580066b604e4e0b1e7ea81d31b06db14ada41bd31

  • SSDEEP

    768:fMO1cujbumg+9wSh8UfT1V8pthQkvA8dUhrBC6QCTbjG7aJHIzjNEBV90RwNzg3G:779Chpx0LlOhmxn9G9KVqaSbOR

Score
3/10
discoveryexecution

Malware Config

Signatures

  • Command and Scripting Interpreter: JavaScript 1 TTPs 1 IoCs

    Execution via JavaScript.

    execution
  • Enumerates kernel/hardware configuration 1 TTPs 2 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

    discovery
  • Reads runtime system information 3 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /usr/bin/node
    node /tmp/resources/app/AppAssets/UserProfileEffects.js
    1⤵
    • Command and Scripting Interpreter: JavaScript
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:2517

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads