50fabff248cf557876275595a5fae14852e9959d5cbab7b23039ca0013a2e8d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Dad.bat
Size

927KB
Sample

240530-wgqfqsfd7v
MD5

ea14c5e82ea64ce395d16645b5a85386
SHA1

ee83d006360853cae4c7c1e1344e470091074fe0
SHA256

50fabff248cf557876275595a5fae14852e9959d5cbab7b23039ca0013a2e8d4
SHA512

11557c3555d5137c91e2f79d636b572b5344a1be28f338d0c6e7cbefb12e9e6969f1f4b47e895d3ecbe4826a9d1efa059314c263a56e87b5c043f7ac99146a65
SSDEEP

12288:vUJCxnCcR3dY9pUgo/qTqPNQSShMNQphbOW9aetlc7mciDQPnpr7VsQenSXtTOrU:vFPRX5CTqPCSSh1vha/15Ppr7V4SXERm

Score

8^/10

execution

Malware Config

Targets

- Target
  
  Dad.bat
- Size
  
  927KB
- MD5
  
  ea14c5e82ea64ce395d16645b5a85386
- SHA1
  
  ee83d006360853cae4c7c1e1344e470091074fe0
- SHA256
  
  50fabff248cf557876275595a5fae14852e9959d5cbab7b23039ca0013a2e8d4
- SHA512
  
  11557c3555d5137c91e2f79d636b572b5344a1be28f338d0c6e7cbefb12e9e6969f1f4b47e895d3ecbe4826a9d1efa059314c263a56e87b5c043f7ac99146a65
- SSDEEP
  
  12288:vUJCxnCcR3dY9pUgo/qTqPNQSShMNQphbOW9aetlc7mciDQPnpr7VsQenSXtTOrU:vFPRX5CTqPCSSh1vha/15Ppr7V4SXERm
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1