Overview

overview

10

Static

static

10

test.ps1

windows7-x64

8

test.ps1

windows10-2004-x64

8

Resubmissions

26-09-2022 19:44

220926-yfzdcsbhc5 10

26-09-2022 09:35

220926-lkjr9aacg2 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    test.ps1

  • Size

    657B

  • Sample

    220926-lkjr9aacg2

  • MD5

    300cc99d8fcbdde2ab818c22df87df68

  • SHA1

    c6ffde8955529d0d0a8f419542fc41860347f7c8

  • SHA256

    5d6ac441f70fda0479b39e05fd40e54a5de2ba7f4a9120513fd49202f8b2dade

  • SHA512

    98e330a79c871268f909d3fc6884f5723088d38cb9b47d736b3d67d24df7a39bf2c53da5521f6dcdf249af7ac86dc562e0e00d65eebd13bb3281ccd160b68417

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

https://posadalaprotegida.com.ar/temp.txt

Targets

    • Target

      test.ps1

    • Size

      657B

    • MD5

      300cc99d8fcbdde2ab818c22df87df68

    • SHA1

      c6ffde8955529d0d0a8f419542fc41860347f7c8

    • SHA256

      5d6ac441f70fda0479b39e05fd40e54a5de2ba7f4a9120513fd49202f8b2dade

    • SHA512

      98e330a79c871268f909d3fc6884f5723088d38cb9b47d736b3d67d24df7a39bf2c53da5521f6dcdf249af7ac86dc562e0e00d65eebd13bb3281ccd160b68417

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks