Windows Analysis Report
convert-js2xml.exe

Overview

General Information

Sample name: convert-js2xml.exe
Analysis ID: 1528455
MD5: e93d1fef4298926f1bbaa79d323f7e2a
SHA1: 639f2285dea4dffef2cf6f01dad51c6047ba1ae8
SHA256: 3349bfcf76d6b129f7a717cce3a114de5ad0a39e50f39e8015943eac36271b3c
Errors
  • No process behavior to analyse as no analysis process or sample was found
  • Corrupt sample or wrongly selected analyzer. Details: The image file %1 is valid, but is for a machine type other than the current machine.

Detection

Score: 52
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Antivirus / Scanner detection for submitted sample
Binary is likely a compiled AutoIt script file

Classification

AV Detection
barindex
Antivirus / Scanner detection for submitted sample
Source: convert-js2xml.exe Avira: detected

System Summary
barindex
Binary is likely a compiled AutoIt script file
Source: convert-js2xml.exe String found in binary or memory: This is a third-party compiled AutoIt script. memstr_35d71cc0-0
Source: convert-js2xml.exe String found in binary or memory: SDSOFTWARE\Classes\\CLSID\\\IPC$This is a third-party compiled AutoIt script."runasError allocating memory.SeAssignPrimaryTokenPrivilegeSeIncreaseQuotaPrivilegeSeBackupPrivilegeSeRestorePrivilegewinsta0defaultwinsta0\defaultComboBoxListBox|SHELLDLL_DefViewlargeiconsdetailssmalliconslistCLASSCLASSNNREGEXPCLASSIDNAMEXYWHINSTANCETEXT%s%u%s%dLAST[LASTACTIVE[ACTIVEHANDLE=[HANDLE:REGEXP=[REGEXPTITLE:CLASSNAME=[CLASS:ALL[ALL]HANDLEREGEXPTITLETITLEThumbnailClassAutoIt3GUIContainer memstr_cd373ba9-3
Source: classification engine Classification label: mal52.winEXE@0/0@0/0
Source: convert-js2xml.exe Binary or memory string: Run Script:AutoIt script files (*.au3, *.a3x)*.au3;*.a3xAll files (*.*)*.*au3#include depth exceeded. Make sure there are no recursive includesError opening the file>>>AUTOIT SCRIPT<<<Bad directive syntax errorUnterminated stringCannot parse #includeUnterminated group of commentsONOFF0%d%dShell_TrayWndREMOVEKEYSEXISTSAPPENDblankinfoquestionstopwarning
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1528455 Sample: convert-js2xml.exe Startdate: 07/10/2024 Architecture: WINDOWS Score: 52 5 Antivirus / Scanner detection for submitted sample 2->5 7 Binary is likely a compiled AutoIt script file 2->7
No contacted IP infos