d669200a0272d9b6d8a07a8dab67b10b940dcca3c1389445fccd0fcf592bdf78 | Triage

Sharing

General

Target

file01.ps1
Size

96B
Sample

240225-ve9adsgd64
MD5

c069a5817117a2fef0218f98d80bd78f
SHA1

98c4cf0d497a12214c006eaafabc135ddff75633
SHA256

d669200a0272d9b6d8a07a8dab67b10b940dcca3c1389445fccd0fcf592bdf78
SHA512

3ff583b37a6a87800ac63cabc09848254050750acccc25943ba984bc6a40121e65249cf08c81179d25e8ebb55d7bf90a94cf54fea9fa08222127de77cfadf8af

Score

7^/10

evasion execution exfiltration macos persistence

Malware Config

Targets

- Target
  
  file01.ps1
- Size
  
  96B
- MD5
  
  c069a5817117a2fef0218f98d80bd78f
- SHA1
  
  98c4cf0d497a12214c006eaafabc135ddff75633
- SHA256
  
  d669200a0272d9b6d8a07a8dab67b10b940dcca3c1389445fccd0fcf592bdf78
- SHA512
  
  3ff583b37a6a87800ac63cabc09848254050750acccc25943ba984bc6a40121e65249cf08c81179d25e8ebb55d7bf90a94cf54fea9fa08222127de77cfadf8af
Score

7^/10

evasion execution exfiltration persistence
- Exfiltration Over Alternative Protocol
  exfiltration
- File Permission
  evasion
- Legitimate hosting services abused for malware hosting/C2
- Launch Agent
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Unix Shell

System Services

Launchctl

Persistence

Create or Modify System Process

Launch Agent

Privilege Escalation

Create or Modify System Process

Launch Agent

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Exfiltration Over Alternative Protocol

Exfiltration Over Unencrypted Non-C2 Protocol

Impact

Tasks

static1

behavioral1

evasionexecutionexfiltrationpersistence