8d9b5190aace52a1db1ac73a65ee9999c329157c8e88f61a772433323d6b7a4a | Triage

Resubmissions

27-08-2024 20:48

240827-zllj5a1dlf 6

14-06-2023 12:44

230614-pyyecahb54 3

Sharing

General

Target

unzip.exe
Size

164KB
Sample

240827-zllj5a1dlf
MD5

75375c22c72f1beb76bea39c22a1ed68
SHA1

e1652b058195db3f5f754b7ab430652ae04a50b8
SHA256

8d9b5190aace52a1db1ac73a65ee9999c329157c8e88f61a772433323d6b7a4a
SHA512

1b396e78e189185eefb8c6058aa7e6dfe1b8f2dff8babfe4ffbee93805467bf45760eea6efb8d9bb2040d0eaa56841d457b1976dcfe13ed67931ade01419f55a
SSDEEP

3072:IeAGcNNwmlR2GNUbomMYMLnbtoKOmiNL2SJOUOhop:CvNNtWuYcqHmiNLOc

Score

6^/10

discovery execution

Malware Config

Targets

- Target
  
  unzip.exe
- Size
  
  164KB
- MD5
  
  75375c22c72f1beb76bea39c22a1ed68
- SHA1
  
  e1652b058195db3f5f754b7ab430652ae04a50b8
- SHA256
  
  8d9b5190aace52a1db1ac73a65ee9999c329157c8e88f61a772433323d6b7a4a
- SHA512
  
  1b396e78e189185eefb8c6058aa7e6dfe1b8f2dff8babfe4ffbee93805467bf45760eea6efb8d9bb2040d0eaa56841d457b1976dcfe13ed67931ade01419f55a
- SSDEEP
  
  3072:IeAGcNNwmlR2GNUbomMYMLnbtoKOmiNL2SJOUOhop:CvNNtWuYcqHmiNLOc
Score

6^/10

discovery execution
- Command and Scripting Interpreter: PowerShell
  Using powershell.exe command.
  execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryexecution