c2ad492e30a53307f299b6694e479e0d55d0c6e3505c1d7929366e905aab3d9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2ad492e30a53307f299b6694e479e0d55d0c6e3505c1d7929366e905aab3d9a.vbs
Size

22KB
Sample

240612-cmsnhayejn
MD5

59466d59d80a2429567c23520135b4b6
SHA1

13453bf0b8f5b716ad554afed8f8acbf0cb65403
SHA256

c2ad492e30a53307f299b6694e479e0d55d0c6e3505c1d7929366e905aab3d9a
SHA512

77187a4174d6bc47935aa5962a72cbacf629f1927133879c9957850ca5178e96485cf5dccb3e95b994128b02346a1454c3c6e80b553f7c8f8b207560fc491bf3
SSDEEP

384:9Ru1EJgdf/HWD4Zx4vBlxSrfsy1E90TOntMQQ0hkCJUjdxmW:9Ru1NF/WDMxE/xSrfsL90ynK6ZJQxX

Score

8^/10

execution

Malware Config

Targets

- Target
  
  c2ad492e30a53307f299b6694e479e0d55d0c6e3505c1d7929366e905aab3d9a.vbs
- Size
  
  22KB
- MD5
  
  59466d59d80a2429567c23520135b4b6
- SHA1
  
  13453bf0b8f5b716ad554afed8f8acbf0cb65403
- SHA256
  
  c2ad492e30a53307f299b6694e479e0d55d0c6e3505c1d7929366e905aab3d9a
- SHA512
  
  77187a4174d6bc47935aa5962a72cbacf629f1927133879c9957850ca5178e96485cf5dccb3e95b994128b02346a1454c3c6e80b553f7c8f8b207560fc491bf3
- SSDEEP
  
  384:9Ru1EJgdf/HWD4Zx4vBlxSrfsy1E90TOntMQQ0hkCJUjdxmW:9Ru1NF/WDMxE/xSrfsL90ynK6ZJQxX
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2