Overview

overview

8

Static

static

1

windows11.ps1

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    windows11.ps1

  • Size

    488B

  • Sample

    240710-lx8bda1cln

  • MD5

    ca3c139dd11a366eb11a07d7c2d52a80

  • SHA1

    45b391b22e962e01afe24222414aeda3d05373f9

  • SHA256

    5e0ee3317e42bbdde40ba78025655df016c75602776d3dca3637642c5dce99b8

  • SHA512

    b7f67ae579f71f5e99ab3af2cd58e6da2e938c19e49bd640fad2cdaa3341d89e5076c4d860cefe42199ba0d33c299ea928bd69dc9a7d9920875d1dd9d17262fe

Score
8/10
execution

Malware Config

Targets

    • Target

      windows11.ps1

    • Size

      488B

    • MD5

      ca3c139dd11a366eb11a07d7c2d52a80

    • SHA1

      45b391b22e962e01afe24222414aeda3d05373f9

    • SHA256

      5e0ee3317e42bbdde40ba78025655df016c75602776d3dca3637642c5dce99b8

    • SHA512

      b7f67ae579f71f5e99ab3af2cd58e6da2e938c19e49bd640fad2cdaa3341d89e5076c4d860cefe42199ba0d33c299ea928bd69dc9a7d9920875d1dd9d17262fe

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks