hxxps://dg01[.]redatatech[.]com/onprem_image_fetch?dep=xY7zN29w8Jl2l30AwkcUXw%3D%3D9HaDMCtNwR9Th4B9WJG7a%2Fq5B0uKWSLh5KNJBikN78naITEc6BuhquOhNoDdACjPNcGkygXdYDlMAXlQ7ZdDYN92zluufZ00Gw9FDsdsyFsdtMFrF7nTiKP1YL%2BuCA8hFKQCRyPqL%2Br64oLUXB%2FjVH6%2BaGjM5NP6AA2tszRdOwSHWvmtOGxs4rnIvgrINAZ7%2BbnZ47Je5PKZwQBHrPB8QmubEPUkOfXh4GPEuF3rs9IQtByRk5bTbtU0DU4a4wv1xa8F3uQbeGlH53Waq8lKnh69lVDM9dIc5i90zLnVMkGVYZOUPx5w7bYv3wy3wVdLlCLvNlDu14Yh83AYR9OM9ygiO9iKANuh8tIpbj2to8nRgRvY4th6rViGDnkVhkjUxGBj%2BM0PWvnZoFA8no1Q1ErJKEVwZ6zAhIwNw6hU9dkRrCrWUa%2Bu%2Fz1vfPU7wfQibJoOBCyrrzxrnTOYwuQCyQ%3D%3D

General

Target

https://dg01.redatatech.com/onprem_image_fetch?dep=xY7zN29w8Jl2l30AwkcUXw%3D%3D9HaDMCtNwR9Th4B9WJG7a%2Fq5B0uKWSLh5KNJBikN78naITEc6BuhquOhNoDdACjPNcGkygXdYDlMAXlQ7ZdDYN92zluufZ00Gw9FDsdsyFsdtMFrF7nTiKP1YL%2BuCA8hFKQCRyPqL%2Br64oLUXB%2FjVH6%2BaGjM5NP6AA2tszRdOwSHWvmtOGxs4rnIvgrINAZ7%2BbnZ47Je5PKZwQBHrPB8QmubEPUkOfXh4GPEuF3rs9IQtByRk5bTbtU0DU4a4wv1xa8F3uQbeGlH53Waq8lKnh69lVDM9dIc5i90zLnVMkGVYZOUPx5w7bYv3wy3wVdLlCLvNlDu14Yh83AYR9OM9ygiO9iKANuh8tIpbj2to8nRgRvY4th6rViGDnkVhkjUxGBj%2BM0PWvnZoFA8no1Q1ErJKEVwZ6zAhIwNw6hU9dkRrCrWUa%2Bu%2Fz1vfPU7wfQibJoOBCyrrzxrnTOYwuQCyQ%3D%3D
Sample

230208-zfx1zafc61

Score

7^/10

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact