44e045ed5350758616d664c5af631e7f2cd10165f5bf2bd82cbf3a0bb8f63462 | Triage

Sharing

General

Target

install.ps1
Size

35KB
Sample

240821-qw4c9a1dpc
MD5

e9fb33c49bee675e226d1afeef2740d9
SHA1

ded4e30152638c4e53db4c3c62a76fe0b69e60ab
SHA256

44e045ed5350758616d664c5af631e7f2cd10165f5bf2bd82cbf3a0bb8f63462
SHA512

2661a981d48d58c9ceb1992e55061ce07af0d53b5f38b07de620376e0ea1d876c7e50965e67aee80fe723968bdb956dc7fd93e7923608534c8fb4d21739dbc48
SSDEEP

768:eYyUEmAnIxaAzYH88cgrD5fIDdBkAqla1GEfdc:evm5o88JOd4Gq

Score

8^/10

execution

Malware Config

Targets

- Target
  
  install.ps1
- Size
  
  35KB
- MD5
  
  e9fb33c49bee675e226d1afeef2740d9
- SHA1
  
  ded4e30152638c4e53db4c3c62a76fe0b69e60ab
- SHA256
  
  44e045ed5350758616d664c5af631e7f2cd10165f5bf2bd82cbf3a0bb8f63462
- SHA512
  
  2661a981d48d58c9ceb1992e55061ce07af0d53b5f38b07de620376e0ea1d876c7e50965e67aee80fe723968bdb956dc7fd93e7923608534c8fb4d21739dbc48
- SSDEEP
  
  768:eYyUEmAnIxaAzYH88cgrD5fIDdBkAqla1GEfdc:evm5o88JOd4Gq
Score

8^/10

execution
- Blocklisted process makes network request
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1