14605d58982699c2f8067cde3109563286dbf18cc233b4ec6036ccb60930403f | Triage

Sharing

General

Target

custom.bat
Size

4KB
Sample

240908-hqtymasdrq
MD5

89f798a5159a32183eb30196d01f1332
SHA1

a9d25c229a0c10acdc45afdb75d67a8b986cd4f0
SHA256

14605d58982699c2f8067cde3109563286dbf18cc233b4ec6036ccb60930403f
SHA512

add8be87d110b65818a30ef77fc3e9e708b810d9e982693525a9ce11d6e1c7f1fda8d3486b80c21a928902705c113a98a069f88fd2274fec152b6aa13f7df1f0
SSDEEP

96:oDmjh7cQGQI9cQITKlQI9uO3DPVqdCgNlWroMu7eQ/Gx6fGfZUX9fQ1ZXkNQI9Iu:oCN7hsTPsdCgVM0emG8bx

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  custom.bat
- Size
  
  4KB
- MD5
  
  89f798a5159a32183eb30196d01f1332
- SHA1
  
  a9d25c229a0c10acdc45afdb75d67a8b986cd4f0
- SHA256
  
  14605d58982699c2f8067cde3109563286dbf18cc233b4ec6036ccb60930403f
- SHA512
  
  add8be87d110b65818a30ef77fc3e9e708b810d9e982693525a9ce11d6e1c7f1fda8d3486b80c21a928902705c113a98a069f88fd2274fec152b6aa13f7df1f0
- SSDEEP
  
  96:oDmjh7cQGQI9cQITKlQI9uO3DPVqdCgNlWroMu7eQ/Gx6fGfZUX9fQ1ZXkNQI9Iu:oCN7hsTPsdCgVM0emG8bx
Score

8^/10

evasion execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Disables Task Manager via registry modification
  evasion
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution

behavioral3

evasionexecution

behavioral4

evasionexecution