General

  • Target

    krampus.zip

  • Size

    6.7MB

  • Sample

    240511-jxeyqafd9v

  • MD5

    f3a0e48ad8641883f68cedf5f99aa6f9

  • SHA1

    8b82bdd59ed671db5bccac3896d3bd85a6f96adf

  • SHA256

    7216809508038bb48101492a4e93434173b059afb68200ef919557286032cee9

  • SHA512

    a85e173d5a793ceb78a189ea04aa12a25633a0e82ce48152c2efaddf721fd9f3b0c34e2afa6665c32c20abc6489a4896697192059ee45ea447e1bf0ddfd7838d

  • SSDEEP

    196608:buuP/flRYo4qb3xZ4YrT7zqylzEXryOyqI2bd0:bhnle8FHmgE73FIam

Score
8/10

Malware Config

Targets

    • Target

      krampus.zip

    • Size

      6.7MB

    • MD5

      f3a0e48ad8641883f68cedf5f99aa6f9

    • SHA1

      8b82bdd59ed671db5bccac3896d3bd85a6f96adf

    • SHA256

      7216809508038bb48101492a4e93434173b059afb68200ef919557286032cee9

    • SHA512

      a85e173d5a793ceb78a189ea04aa12a25633a0e82ce48152c2efaddf721fd9f3b0c34e2afa6665c32c20abc6489a4896697192059ee45ea447e1bf0ddfd7838d

    • SSDEEP

      196608:buuP/flRYo4qb3xZ4YrT7zqylzEXryOyqI2bd0:bhnle8FHmgE73FIam

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks