Overview

overview

10

Static

static

10

2.ps1

windows7-x64

8

2.ps1

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2.ps1

  • Size

    3KB

  • Sample

    220824-lv7xtsbfhl

  • MD5

    09cc9c560e20d0c8011f77c30c9cc21d

  • SHA1

    16c9bedf2d4def01ce8dae29ef979549e508db38

  • SHA256

    a66f6ec5d504f0e6fb16ca39d148754e8528413804fe7dcfae7bef1800192e79

  • SHA512

    6a479d6963a031551b9339008280a491c259393233130e8989ccbecb6b9649ed4c417b7a5783812adbcd322ebb6f592a2ccbb80aaa55b2713ebf909662d306ea

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://newslimitless.com:443/Develop/v5.59/HAJYVLCWIA

Targets

    • Target

      2.ps1

    • Size

      3KB

    • MD5

      09cc9c560e20d0c8011f77c30c9cc21d

    • SHA1

      16c9bedf2d4def01ce8dae29ef979549e508db38

    • SHA256

      a66f6ec5d504f0e6fb16ca39d148754e8528413804fe7dcfae7bef1800192e79

    • SHA512

      6a479d6963a031551b9339008280a491c259393233130e8989ccbecb6b9649ed4c417b7a5783812adbcd322ebb6f592a2ccbb80aaa55b2713ebf909662d306ea

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks