297195435dbf1ecfeee579c3c355375db68a8f3381a798a2dc59774f4c38d22e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WSL-Setup.ps1
Size

4KB
Sample

240308-3f7f7ahh55
MD5

9647884c6a5d277932a3900e254df3e6
SHA1

a2e15367867b83e6db586201d70f12cb4168d218
SHA256

297195435dbf1ecfeee579c3c355375db68a8f3381a798a2dc59774f4c38d22e
SHA512

222c835a6b4125c57faf00b8761a9016ac7d20f3d55289a7faf930ceab1c239b7e8fbf6ead7a25ad8ac6624a8333677612af272482980b30be4daddad456e8aa
SSDEEP

96:piOWUfeWFjvuqXVXE3d9EWERMhUCE7ngR2s9g2:FWUGq7zX2wHsb

Score

8^/10

Malware Config

Targets

- Target
  
  WSL-Setup.ps1
- Size
  
  4KB
- MD5
  
  9647884c6a5d277932a3900e254df3e6
- SHA1
  
  a2e15367867b83e6db586201d70f12cb4168d218
- SHA256
  
  297195435dbf1ecfeee579c3c355375db68a8f3381a798a2dc59774f4c38d22e
- SHA512
  
  222c835a6b4125c57faf00b8761a9016ac7d20f3d55289a7faf930ceab1c239b7e8fbf6ead7a25ad8ac6624a8333677612af272482980b30be4daddad456e8aa
- SSDEEP
  
  96:piOWUfeWFjvuqXVXE3d9EWERMhUCE7ngR2s9g2:FWUGq7zX2wHsb
Score

8^/10
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2