ccc71819287c931ddf6625bfede42bc3cce4ffc61795cc955822fc981564fbc5 | Triage

Sharing

General

Target

decode_Fakeupdate.ps1.ps1
Size

4KB
Sample

240220-aavk8afg9y
MD5

de20d86ec1a1e85bfbc5745a03a38e51
SHA1

3558b1d1c1049f8852a79162e98ad201f1ba5426
SHA256

ccc71819287c931ddf6625bfede42bc3cce4ffc61795cc955822fc981564fbc5
SHA512

243ddbc84f0ca0f319f68028e39331f196c6085756a12820f78f996a47700ecf8066b681d265ecdbcead4439ec67e307e739acd2a07a759cb001b4170d501b9b
SSDEEP

96:lrlrvxj+/ZFAAIxnkIh3qa9RDyj5tsMemPYTall:l5IjMku6e1yjXsMemPYOll

Score

8^/10

Malware Config

Targets

- Target
  
  decode_Fakeupdate.ps1.ps1
- Size
  
  4KB
- MD5
  
  de20d86ec1a1e85bfbc5745a03a38e51
- SHA1
  
  3558b1d1c1049f8852a79162e98ad201f1ba5426
- SHA256
  
  ccc71819287c931ddf6625bfede42bc3cce4ffc61795cc955822fc981564fbc5
- SHA512
  
  243ddbc84f0ca0f319f68028e39331f196c6085756a12820f78f996a47700ecf8066b681d265ecdbcead4439ec67e307e739acd2a07a759cb001b4170d501b9b
- SSDEEP
  
  96:lrlrvxj+/ZFAAIxnkIh3qa9RDyj5tsMemPYTall:l5IjMku6e1yjXsMemPYOll
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4