Overview

overview

8

Static

static

1

vfs_8__U5s...5).cmd

windows10-2004-x64

Resubmissions

05/10/2023, 16:53

231005-vd9jrscg9x 8

05/10/2023, 16:46

231005-t98fxacg3t 1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    vfs_8__U5swX(379615).rar

  • Size

    751B

  • Sample

    231005-vd9jrscg9x

  • MD5

    26ae09887cd61717ac0c8253ec6ec802

  • SHA1

    9b59632cdebca2764dfdcfc58fa2a4efe9a59a9f

  • SHA256

    71ce20ecab22798ec45ac1d121ec97c8231b1e321555533a9bf9b45cc363e9a9

  • SHA512

    4219305b58c11a7dc80c6b8de733fa4976f3e1b3c218dbaf91a279d5966d8c29085cb3c2b63952a57207a7bce5cff3db7820f7a642b9a293c94f36a4b6e2d775

Score
8/10

Malware Config

Targets

    • Target

      vfs_8__U5swX(379615).cmd

    • Size

      887B

    • MD5

      c5a72c3a09496bb6ce1269bc43df7e89

    • SHA1

      baa6c139b743a83c10bb527175e0198d97c9c6bb

    • SHA256

      7b0bccc1db8055d6f1c79a6d200979cc1bde8c7138665fc546c30f1ca1ef707f

    • SHA512

      b975bbda2f6d6393495763c6fad69a070b082d43f0fe532a27d55d60174d2fb4546fac97f8ebf2792d65c79ff497b08afb707c2a54a7d2371a741a13296b9e08

    Score
    8/10

    • Blocklisted process makes network request

    • Drops startup file

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks