6154066ac1411f5a9efe47efac83ccfc607dc829dd9ffd167c188e49610c834b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6154066ac1411f5a9efe47efac83ccfc607dc829dd9ffd167c188e49610c834b
Size

2.0MB
Sample

240714-t9yxgayenq
MD5

6d5f03017548a36962ecf271db8f05d1
SHA1

6f197cdaccb22e3b9d546920b5409e1ffd9f8c47
SHA256

6154066ac1411f5a9efe47efac83ccfc607dc829dd9ffd167c188e49610c834b
SHA512

ec88f3a23b26aef1d454aae33f40b2c88a32ce5a010174b25bf802c336ed4270a4b925e443ea88a5ed303b9364dd17091a2b5c81fb089733cad8ff07e7e2fe56
SSDEEP

49152:f0PaxawIx3e50mH0SxG9GO6juMRUPi+qfNb6QvgBFAzvk/n/+lD7I0:f0PaxvII+xSxG9GO6juMRGibZ6agPAgs

Score

3^/10

execution

Malware Config

Targets

- Target
  
  Auto.vbs
- Size
  
  341B
- MD5
  
  1b86ac4c78166fdc657b6ac7c9519761
- SHA1
  
  62c6acb48467dc21d2bccc44b0069690dc65fd4d
- SHA256
  
  fa790a55aac779658064f7ce83cee26b84c424e3fe9002ce854d1a142dcb5633
- SHA512
  
  482be9eae47c42f7bcbc328bd3f38f476cee5da4ccad5b56133997ce3c0474abc179ecef4dd5a7e60de6177068be19e9fbf7e81895b067e3dd59d3d264c94389
Score

3^/10
behavioral1 behavioral2
- Target
  
  AutoHotkey
- Size
  
  1KB
- MD5
  
  e4b9efce0454924223239ad1967f0bf8
- SHA1
  
  be9db64d2eb47b7b0457562e8ae6f293bc8f339e
- SHA256
  
  6a55cb7e2f493c9738090ecf6daafde4da27bfd4e730504d522a28dc51db8667
- SHA512
  
  7c123490068b4b1200bd2b66ef352975a7724052c2e8ca0d2ac7158159ae3e0b65a25fb031eb6dbf69b20eb249f666245eee7790747670a3611f3ebc11aa386e
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  AutoHotkey.exe
- Size
  
  774KB
- MD5
  
  e63e2669a293c1a6709c373f208a48cf
- SHA1
  
  489957991f7c59ec748fb4951fa0b2dd676c8998
- SHA256
  
  b740b8ea604a8b6ee1864353cfbbcd6778187486cc408d750c7a1a93bc6a0a0c
- SHA512
  
  82655f6110ffd9fcca1572b593ad0bef51974da5a18bdecc79ee88f8d56e14157b5349fadac4f27a8df4e6537165415acb6670fa0c453c5131d67d2500b5dde9
- SSDEEP
  
  24576:oOm5/ylKXZF9rk2o7YTuoSGjkm+XR5bQQk:/lO9YxSV+n
Score

1^/10
behavioral5 behavioral6
- Target
  
  Quantifyr.exe
- Size
  
  925KB
- MD5
  
  0adb9b817f1df7807576c2d7068dd931
- SHA1
  
  4a1b94a9a5113106f40cd8ea724703734d15f118
- SHA256
  
  98e4f904f7de1644e519d09371b8afcbbf40ff3bd56d76ce4df48479a4ab884b
- SHA512
  
  883aa88f2dba4214bb534fbdaf69712127357a3d0f5666667525db3c1fa351598f067068dfc9e7c7a45fed4248d7dca729ba4f75764341e47048429f9ca8846a
- SSDEEP
  
  24576:fYgAon+KfqNbXD2XJ2PH1ddATgs/u2kaCB+l:f37+KSbq5e1diEnHaCK
Score

3^/10
behavioral7 behavioral8
- Target
  
  bin.au3
- Size
  
  260KB
- MD5
  
  1c1b971a0fd5277f40615ad0ebfbab28
- SHA1
  
  e22248c7e64dca7aa2740b44be0ade072fb1a4a9
- SHA256
  
  4f22ed0eff0445a9d17f6df519a4a3b72416415bfa5d5813fd39bb5a4972ce07
- SHA512
  
  b6829edd94486a62286850fe70f5041ddc07e4a2fa9aaf7385ba8798ee9503ab89505bcb8a5f6ca5142fa9a60521894cc908a524e98b6a4f27dda3bcd4240fd7
- SSDEEP
  
  1536:J9ON/0WX0yp7r7n7Zsqt8bE4qghv6HQ/Ap00sJF1TDH1T4bA44ruoR8PrTzbOBoL:8/040E7r7n7o/47hlpAo
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  node.bat
- Size
  
  716B
- MD5
  
  6085743c435bb47c61ee21bce296a42d
- SHA1
  
  d8b2f36bbb8911b5e3f45a1f40c5d725f6a2a582
- SHA256
  
  786bd00c16dec25d39f61074e2d273a8798c0c04f4590ec5c08c376fed932a40
- SHA512
  
  1217d9a6f8b3b7fabce5af5def88c2667fc029814b622e8c80a9c218b644c44f22645a2c7eeeae223f4263952de26bbdb4c4355d71595878bace71e6236eec5c
Score

3^/10

execution
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12