IOC Report
download.js

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\wscript.exe
C:\Windows\System32\WScript.exe "C:\Users\user\Desktop\download.js"
malicious

Domains

Name
IP
Malicious
bg.microsoft.map.fastly.net
199.232.210.172
s-part-0017.t-0009.t-msedge.net
13.107.246.45
time.windows.com
unknown

Memdumps

Base Address
Regiontype
Protect
Malicious
1CE751B9000
heap
page read and write
1CE75243000
heap
page read and write
1CE75279000
heap
page read and write
57A18FA000
stack
page read and write
1CE751B5000
heap
page read and write
1CE75226000
heap
page read and write
1CE75246000
heap
page read and write
1CE7524B000
heap
page read and write
1CE751BC000
heap
page read and write
1CE7524B000
heap
page read and write
1CE7524F000
heap
page read and write
1CE76F81000
heap
page read and write
1CE751B0000
heap
page read and write
1CE76F80000
heap
page read and write
1CE7525E000
heap
page read and write
1CE75253000
heap
page read and write
1CE75253000
heap
page read and write
1CE75241000
heap
page read and write
1CE7524B000
heap
page read and write
7FFB1E851000
unkown
page execute read
1CE75241000
heap
page read and write
1CE7522F000
heap
page read and write
7FFB1E866000
unkown
page readonly
57A1AFE000
stack
page read and write
1CE75210000
heap
page read and write
1CE76C10000
heap
page read and write
1CE75245000
heap
page read and write
1CE75206000
heap
page read and write
7FFB1E875000
unkown
page readonly
1CE75253000
heap
page read and write
57A1DFE000
stack
page read and write
1CE751EC000
heap
page read and write
1CE751F9000
heap
page read and write
1CE7525B000
heap
page read and write
1CE7524B000
heap
page read and write
57A19FF000
stack
page read and write
1CE75279000
heap
page read and write
57A1CFE000
stack
page read and write
7FFB1E870000
unkown
page read and write
1CE75253000
heap
page read and write
1CE7525A000
heap
page read and write
1CE75241000
heap
page read and write
1CE7524B000
heap
page read and write
1CE75090000
heap
page read and write
1CE75255000
heap
page read and write
1CE76C30000
heap
page read and write
1CE7521A000
heap
page read and write
1CE751F6000
heap
page read and write
1CE7520D000
heap
page read and write
1CE7520E000
heap
page read and write
7FFB1E872000
unkown
page readonly
1CE7521A000
heap
page read and write
1CE788E0000
trusted library allocation
page read and write
1CE76C34000
heap
page read and write
1CE751D0000
heap
page read and write
1CE75253000
heap
page read and write
57A1EFE000
stack
page read and write
57A1FFE000
stack
page read and write
1CE751F6000
heap
page read and write
1CE75253000
heap
page read and write
1CE75190000
heap
page read and write
1CE7526E000
heap
page read and write
7FFB1E850000
unkown
page readonly
1CE75253000
heap
page read and write
1CE75170000
heap
page read and write
1CE75250000
heap
page read and write
57A20FF000
stack
page read and write
1CE75205000
heap
page read and write
1CE751F6000
heap
page read and write
1CE75253000
heap
page read and write
1CE751FA000
heap
page read and write
1CE75254000
heap
page read and write
1CE75241000
heap
page read and write
1CE7524B000
heap
page read and write
1CE751F1000
heap
page read and write
1CE751F1000
heap
page read and write
There are 66 hidden memdumps, click here to show them.