10bdc48bb0e24ee085122eaa91d5d712a6ee67d09fa7f2cbc19a64982289aac1 | Triage

Sharing

General

Target

winutil.ps1
Size

706KB
Sample

240705-zjapvavgkq
MD5

c528bd5bc97357d31897df5b08fdf6a1
SHA1

4f710258f994bbf4e6672114c783c57e874f7009
SHA256

10bdc48bb0e24ee085122eaa91d5d712a6ee67d09fa7f2cbc19a64982289aac1
SHA512

5568f8fe6903bfe3fef2b304ef4ddd12de7709b1aff286d4f9643b6cf068a2b6b1a6f13d8006ccd4e5efbb7e1e29ff5bb25f01d22a2835e3c38d9a18ea10481d
SSDEEP

6144:hznWFM9Q1N4vwa4FFrQtF2WuhcH2ftX/yHX0RX0ezbyt/VSYlecBloZiYECQ:h0TcHHuVzqlHD

Score

8^/10

execution

Malware Config

Targets

- Target
  
  winutil.ps1
- Size
  
  706KB
- MD5
  
  c528bd5bc97357d31897df5b08fdf6a1
- SHA1
  
  4f710258f994bbf4e6672114c783c57e874f7009
- SHA256
  
  10bdc48bb0e24ee085122eaa91d5d712a6ee67d09fa7f2cbc19a64982289aac1
- SHA512
  
  5568f8fe6903bfe3fef2b304ef4ddd12de7709b1aff286d4f9643b6cf068a2b6b1a6f13d8006ccd4e5efbb7e1e29ff5bb25f01d22a2835e3c38d9a18ea10481d
- SSDEEP
  
  6144:hznWFM9Q1N4vwa4FFrQtF2WuhcH2ftX/yHX0RX0ezbyt/VSYlecBloZiYECQ:h0TcHHuVzqlHD
Score

8^/10

execution
- Blocklisted process makes network request
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1