cc1d96ef1c10532122a9ff16ef6436ee160d851662dd6d7b795c951b2d6252c3

Resubmissions

26-01-2024 16:49

240126-vbrk6sbegj 10

25-01-2024 17:15

240125-vsktysbde9 10

Sharing

Copy URL

Twitter E-mail

General

Target

14500349286.zip
Size

1KB
Sample

240126-vbrk6sbegj
MD5

f75019b5d48f0c6f3c5c0dc8bb30ec49
SHA1

7dbfed64a0cc2e0168655972bab5fed53de38464
SHA256

cc1d96ef1c10532122a9ff16ef6436ee160d851662dd6d7b795c951b2d6252c3
SHA512

4eebaf43b468bf1b9b898075b01c37ca944e6ba84219194b81193ec93c32e236822ca08b1108450ad685ab39cf1a521bf67ed4feb31aa8b307b57963cf33c682

Score

10^/10

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

https://www.mediafire.com/file_premium/c5fcsugpyfpg58q/achung888844494939202930984089054.zip/file

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

https://breakingmyanmarnews.com/update

Targets

- Target
  
  Screenshot - Order Form 01 2024.bat
- Size
  
  4KB
- MD5
  
  848371ca1f49b61c898b6421aa6e2c72
- SHA1
  
  6c42909f2ef190982239e98837b66520837a38ec
- SHA256
  
  c7eb0aa98b1158dc74e14013dc072420c51095912a4de133b32ef3902be33fdf
- SHA512
  
  319635aa0c88d8c6212d8d26100e4dd4dbc5b44c58ad53988948ee4a49badf00fe43ea879bf723ec3463dae02814bbfbba3208649ad14fe095976ede132d34a5
- SSDEEP
  
  96:tfXEwhZQHRl3g5ap3q4L/CrSdaAsaAQIik:tfXEwQhjC2ZIn
Score

10^/10
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Extracted

Targets

Blocklisted process makes network request

Drops startup file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2