popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

executeInstall.js

  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 26, 2023, 5:39 p.m. Sept. 26, 2023, 5:42 p.m.
Size 71.5KB
Type ASCII text, with very long lines, with no line terminators
MD5 fcb124a08ae0351cab33214c2eda395f
SHA256 6ed61ca116a67a2e2fe0ba519f830057700eb7a841b97dbf865002aa6143b4f1
CRC32 5B9EA8FB
ssdeep 1536:zani47yCejhmuWD1S2hXGcpLOgvpCXnIM+CuX5WhoO6hTgBl627EUOu9h:OnR7yCejO9hXGoLOgvH5WWOsTSl627E0
Yara None matched

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch
165.22.242.147 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

ALYac GT:JS.Backdoor.2.C0D28079
BitDefender GT:JS.Backdoor.2.C0D28079
MicroWorld-eScan GT:JS.Backdoor.2.C0D28079
Emsisoft GT:JS.Backdoor.2.C0D28079 (B)
VIPRE GT:JS.Backdoor.2.C0D28079
FireEye GT:JS.Backdoor.2.C0D28079
GData GT:JS.Backdoor.2.C0D28079
Arcabit GT:JS.Backdoor.2.C0D28079
MAX malware (ai score=80)
host 165.22.242.147
dead_host 192.168.56.101:49163
dead_host 165.22.242.147:80