263942724d526809d341cc855e2d4cd0277c34f67acaede643af569dbaa9f766 | Triage

Sharing

General

Target

install.ps1
Size

668B
Sample

221205-kfjq1sga3z
MD5

2fbf1f1237da3db5944c0a4833859248
SHA1

471d68ca41fd773b2511311f46cd3014b8a4bdf4
SHA256

263942724d526809d341cc855e2d4cd0277c34f67acaede643af569dbaa9f766
SHA512

27c4f665dc1c76105dc5ae0146c78b0fd127a2ff78accad8a095042803b8782398ada081b823e9ceaefd1d50fbea1dce2b5102d8ac89e53428c74f3291bcc104

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  install.ps1
- Size
  
  668B
- MD5
  
  2fbf1f1237da3db5944c0a4833859248
- SHA1
  
  471d68ca41fd773b2511311f46cd3014b8a4bdf4
- SHA256
  
  263942724d526809d341cc855e2d4cd0277c34f67acaede643af569dbaa9f766
- SHA512
  
  27c4f665dc1c76105dc5ae0146c78b0fd127a2ff78accad8a095042803b8782398ada081b823e9ceaefd1d50fbea1dce2b5102d8ac89e53428c74f3291bcc104
Score

8^/10

evasion
- Blocklisted process makes network request
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Hidden Files and Directories

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2