982d008f2b1ce96f0b4d41e5d6faa0da2067792e88aba8fa2e20b1ab73ce2147 | Triage

Submit
Reports

Overview

overview

Static

static

7

MozillaBui...st.exe

windows7-x64

MozillaBui...st.exe

windows10-2004-x64

4

python3/tc...er.vbs

windows7-x64

1

python3/tc...er.vbs

windows10-2004-x64

1

python3/tc.../timer

ubuntu-18.04-amd64

python3/tc.../timer

debian-9-armhf

python3/tc.../timer

debian-9-mips

python3/tc.../timer

debian-9-mipsel

python3/tc...ut.vbs

windows7-x64

1

python3/tc...ut.vbs

windows10-2004-x64

1

python3/tc...ne.vbs

windows7-x64

1

python3/tc...ne.vbs

windows10-2004-x64

1

python3/tc...nd.vbs

windows7-x64

1

python3/tc...nd.vbs

windows10-2004-x64

1

python3/tc...ut.vbs

windows7-x64

1

python3/tc...ut.vbs

windows10-2004-x64

1

python3/tc...widget

ubuntu-18.04-amd64

python3/tc...widget

debian-9-armhf

python3/tc...widget

debian-9-mips

python3/tc...widget

debian-9-mipsel

python3/tc...ry.vbs

windows7-x64

1

python3/tc...ry.vbs

windows10-2004-x64

1

python3/tc...us.vbs

windows7-x64

1

python3/tc...us.vbs

windows10-2004-x64

1

python3/tc...er.vbs

windows7-x64

1

python3/tc...er.vbs

windows10-2004-x64

1

python3/tc...st.vbs

windows7-x64

1

python3/tc...st.vbs

windows10-2004-x64

1

python3/tc...ox.vbs

windows7-x64

1

python3/tc...ox.vbs

windows10-2004-x64

1

python3/tc...et.vbs

windows7-x64

1

python3/tc...et.vbs

windows10-2004-x64

1

Analysis

max time kernel
118s
max time network
139s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
23-06-2024 17:08

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

MozillaBuildSetup-Latest.exe

Resource

win7-20240221-en

gandcrab backdoor ransomware

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

MozillaBuildSetup-Latest.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

python3/tcl/tk8.6/demos/textpeer.vbs

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

python3/tcl/tk8.6/demos/textpeer.vbs

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

python3/tcl/tk8.6/demos/timer

Resource

ubuntu1804-amd64-20240508-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

python3/tcl/tk8.6/demos/timer

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

python3/tcl/tk8.6/demos/timer

Resource

debian9-mipsbe-20240611-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

python3/tcl/tk8.6/demos/timer

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

python3/tcl/tk8.6/demos/ttkbut.vbs

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

python3/tcl/tk8.6/demos/ttkbut.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

python3/tcl/tk8.6/demos/ttkpane.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

python3/tcl/tk8.6/demos/ttkpane.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

python3/tcl/tk8.6/demos/twind.vbs

Resource

win7-20240611-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

python3/tcl/tk8.6/demos/twind.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

python3/tcl/tk8.6/demos/unicodeout.vbs

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

python3/tcl/tk8.6/demos/unicodeout.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

python3/tcl/tk8.6/demos/widget

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

python3/tcl/tk8.6/demos/widget

Resource

debian9-armhf-20240418-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

python3/tcl/tk8.6/demos/widget

Resource

debian9-mipsbe-20240418-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

python3/tcl/tk8.6/demos/widget

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

python3/tcl/tk8.6/entry.vbs

Resource

win7-20240611-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

python3/tcl/tk8.6/entry.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

python3/tcl/tk8.6/focus.vbs

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

python3/tcl/tk8.6/focus.vbs

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

python3/tcl/tk8.6/fontchooser.vbs

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

python3/tcl/tk8.6/fontchooser.vbs

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

python3/tcl/tk8.6/iconlist.vbs

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

python3/tcl/tk8.6/iconlist.vbs

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

python3/tcl/tk8.6/listbox.vbs

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

python3/tcl/tk8.6/listbox.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

python3/tcl/tk8.6/megawidget.vbs

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

python3/tcl/tk8.6/megawidget.vbs

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

python3/tcl/tk8.6/iconlist.vbs
Size

17KB
MD5

4fde770e3dff8b95295fb887f510534b
SHA1

5356ba885d61910a34756188d676facd0353ed8a
SHA256

c8b4b2130c6ad658331c59f41d8bdbab44e0011781214a0b0be78c4920536b2e
SHA512

30bf50137f18643fc3622eaa195ec7e0f21b77980c16db54cca1b7aefa17ca4ce8e6f82d6c8f4a0dfb6dd78d4f115d3a5d8da7573a928af9c1a92727bd4f0691
SSDEEP

384:FNP8nO9Wo8k5NfQH8EsOy8WMVbcfNCvJshPOw7jW:FNf8uNfQH89Z8WMVY15DW

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\python3\tcl\tk8.6\iconlist.vbs"
1⤵
PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy