Overview

overview

8

Static

static

1

windows.ps1

windows10-1703-x64

8

windows.ps1

windows10-2004-x64

8

windows.ps1

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    windows.ps1

  • Size

    465B

  • Sample

    240722-ncx11svbme

  • MD5

    601cf66f5ffd600ab643010decc1c69f

  • SHA1

    48ad040d2f084cc876b24dc2f06152e024b49b5f

  • SHA256

    f58915519078bb3dfce0115a2df0649e8210f7b7b6c8c6d1082443da5b1fb20e

  • SHA512

    1d995e035c119132731ef57eff59dbb8d3c3512a05405172d551c44e5d48892425969fa618767cbb1d92a7b93a7aa2f38e988809b719ba01b0b4e5056cded719

Score
8/10
execution

Malware Config

Targets

    • Target

      windows.ps1

    • Size

      465B

    • MD5

      601cf66f5ffd600ab643010decc1c69f

    • SHA1

      48ad040d2f084cc876b24dc2f06152e024b49b5f

    • SHA256

      f58915519078bb3dfce0115a2df0649e8210f7b7b6c8c6d1082443da5b1fb20e

    • SHA512

      1d995e035c119132731ef57eff59dbb8d3c3512a05405172d551c44e5d48892425969fa618767cbb1d92a7b93a7aa2f38e988809b719ba01b0b4e5056cded719

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks