5f1be8d4f992d703ab41c1cbe03b4ae706def4acde47203daab42c6b12201683 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

no-ac.bat
Size

209B
Sample

240802-dgaq6ssclq
MD5

4a59c88c24a422f2fd89861706df011e
SHA1

c6a3dcd1ed9ea608eb97236565e830aed97739bf
SHA256

5f1be8d4f992d703ab41c1cbe03b4ae706def4acde47203daab42c6b12201683
SHA512

731cbd9b23cc5eadea30ae42060e9c3e6e755c17c014d48418105b2111f6a9c76f40964eb3bb5cd2fe36ff588cd3510d545899212ef717b7b197309bd806259b

Score

8^/10

execution

Malware Config

Targets

- Target
  
  no-ac.bat
- Size
  
  209B
- MD5
  
  4a59c88c24a422f2fd89861706df011e
- SHA1
  
  c6a3dcd1ed9ea608eb97236565e830aed97739bf
- SHA256
  
  5f1be8d4f992d703ab41c1cbe03b4ae706def4acde47203daab42c6b12201683
- SHA512
  
  731cbd9b23cc5eadea30ae42060e9c3e6e755c17c014d48418105b2111f6a9c76f40964eb3bb5cd2fe36ff588cd3510d545899212ef717b7b197309bd806259b
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
  execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2