7ae20c29cffd43d5b581b6ad266745a9b597284763f6d367b2984238d8ee6664 | Triage

Resubmissions

18-11-2023 19:52

231118-ylmlragd2t 8

18-11-2023 19:48

231118-yjat6sgc9y 8

Sharing

General

Target

rev.ps1
Size

4KB
Sample

231118-ylmlragd2t
MD5

df93705fd0634ea8011b09151c360cda
SHA1

32de753266959d69453c33fb3b599c461a42da07
SHA256

7ae20c29cffd43d5b581b6ad266745a9b597284763f6d367b2984238d8ee6664
SHA512

3afb1f021f6a24602ba70584418f08bab1b0bae4dbc708446c40576a419980457a21756019c1a5e8915fa333ccbc86cbdfc32b2f463a91134e10ee1e0033cbb7
SSDEEP

96:J+rbXHvonUsYqwLZvUqVn/0b37DMo6XBr4qIVCqiM7:Jyb3QCK+lo6XBEfVCqiw

Score

8^/10

Malware Config

Targets

- Target
  
  rev.ps1
- Size
  
  4KB
- MD5
  
  df93705fd0634ea8011b09151c360cda
- SHA1
  
  32de753266959d69453c33fb3b599c461a42da07
- SHA256
  
  7ae20c29cffd43d5b581b6ad266745a9b597284763f6d367b2984238d8ee6664
- SHA512
  
  3afb1f021f6a24602ba70584418f08bab1b0bae4dbc708446c40576a419980457a21756019c1a5e8915fa333ccbc86cbdfc32b2f463a91134e10ee1e0033cbb7
- SSDEEP
  
  96:J+rbXHvonUsYqwLZvUqVn/0b37DMo6XBr4qIVCqiM7:Jyb3QCK+lo6XBEfVCqiw
Score

8^/10
- Blocklisted process makes network request
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3