e5865c1e52d23c15762c085f55adf8fb80bdbb62294df617b99597f33a6783d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Your-Bill-121500128.bat
Size

9KB
Sample

230415-s4rqjaef22
MD5

40b768c53d990c804ed86e934800d93c
SHA1

20d0029ef2f6a348f1109a9e6d0bf1a7b9e21d40
SHA256

e5865c1e52d23c15762c085f55adf8fb80bdbb62294df617b99597f33a6783d0
SHA512

8a6974bcf84fc09a2cbb8f67ead752c37d94ac5f2b760924b0232a9976d5b4f4ad3eb567d73f423571f14d8c74e21475fb1ef932f8ca85419b0488ee95ddcbcb
SSDEEP

96:ZgMFsPg8FASmP0Z0MgMFsPg8FASmj0n0S06kUHw06kUQ0y06kUS906kUs06kU805:O4ht4hI3K3M3Sx3e3n373X3E3s

Score

10^/10

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

ps1.dropper

http://66.94.109.58/x.png

Targets

- Target
  
  Your-Bill-121500128.bat
- Size
  
  9KB
- MD5
  
  40b768c53d990c804ed86e934800d93c
- SHA1
  
  20d0029ef2f6a348f1109a9e6d0bf1a7b9e21d40
- SHA256
  
  e5865c1e52d23c15762c085f55adf8fb80bdbb62294df617b99597f33a6783d0
- SHA512
  
  8a6974bcf84fc09a2cbb8f67ead752c37d94ac5f2b760924b0232a9976d5b4f4ad3eb567d73f423571f14d8c74e21475fb1ef932f8ca85419b0488ee95ddcbcb
- SSDEEP
  
  96:ZgMFsPg8FASmP0Z0MgMFsPg8FASmj0n0S06kUHw06kUQ0y06kUS906kUs06kU805:O4ht4hI3K3M3Sx3e3n373X3E3s
Score

10^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2