fa6c304e3935ac4250b6dc46ecd78f901d3e4269da8a1ba18f7f9a666ad48106 | Triage

Sharing

General

Target

MainWinStyle.ps1
Size

5KB
Sample

231030-n9xrhscg6t
MD5

d19e2e2d941c0d5ccb06da193ae608b2
SHA1

6a2e50c3ddbbc6880f9419f08622f2c47b66c807
SHA256

fa6c304e3935ac4250b6dc46ecd78f901d3e4269da8a1ba18f7f9a666ad48106
SHA512

9726b55332037f72f77e729f1effc66c433c9902674f98e764f90633f4449b2032d27b56daef41a31419583e04e75e1a4d18b383b71ad2159e6ccf0a18996c44
SSDEEP

96:ThaLod0XhIVhxYI4maLEQetz49RRnpeI09MfAT1hJ6JQpCP87BQAYQLFwQQ17XRX:Thwo02VhShLDetmAI09MYT1HpCE7BQxH

Score

8^/10

Malware Config

Targets

- Target
  
  MainWinStyle.ps1
- Size
  
  5KB
- MD5
  
  d19e2e2d941c0d5ccb06da193ae608b2
- SHA1
  
  6a2e50c3ddbbc6880f9419f08622f2c47b66c807
- SHA256
  
  fa6c304e3935ac4250b6dc46ecd78f901d3e4269da8a1ba18f7f9a666ad48106
- SHA512
  
  9726b55332037f72f77e729f1effc66c433c9902674f98e764f90633f4449b2032d27b56daef41a31419583e04e75e1a4d18b383b71ad2159e6ccf0a18996c44
- SSDEEP
  
  96:ThaLod0XhIVhxYI4maLEQetz49RRnpeI09MfAT1hJ6JQpCP87BQAYQLFwQQ17XRX:Thwo02VhShLDetmAI09MYT1HpCE7BQxH
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2