zloader | 9cd7f45620bda9811e200380d3e43a3ea768c48d1240448c279b3321d3ae59b6

Sharing

Copy URL

Twitter E-mail

General

Target

Battly-Launcher-win.exe
Size

188.1MB
Sample

240915-3p9b5syanb
MD5

3b6b92297beb78efb283e0d2fa32fc19
SHA1

b056d281a74d9e0fd7546bbed068a915608336e0
SHA256

9cd7f45620bda9811e200380d3e43a3ea768c48d1240448c279b3321d3ae59b6
SHA512

bb32b9529abe3fef0025cd8f81a4bcea6cffaa4b20112e9fbd57482b0f4ee092740afbcd788684fdae676bc7cebc17af491c9dae73b082cca31b9aabc3111463
SSDEEP

3145728:IJcuNt6i+X0MdTUPo+YFawtU4odzw7Lm3436E7IkGl0BkChNw5+VTmms+B6Q87:UcuN7+QYFjmPz0Lm3J0wahNw5+VTTs+y

Score

10^/10

Malware Config

Extracted

Language

ps1

Source

URLs

exe.dropper

https://www.battlylauncher.com

Targets

- Target
  
  Battly-Launcher-win.exe
- Size
  
  188.1MB
- MD5
  
  3b6b92297beb78efb283e0d2fa32fc19
- SHA1
  
  b056d281a74d9e0fd7546bbed068a915608336e0
- SHA256
  
  9cd7f45620bda9811e200380d3e43a3ea768c48d1240448c279b3321d3ae59b6
- SHA512
  
  bb32b9529abe3fef0025cd8f81a4bcea6cffaa4b20112e9fbd57482b0f4ee092740afbcd788684fdae676bc7cebc17af491c9dae73b082cca31b9aabc3111463
- SSDEEP
  
  3145728:IJcuNt6i+X0MdTUPo+YFawtU4odzw7Lm3436E7IkGl0BkChNw5+VTmms+B6Q87:UcuN7+QYFjmPz0Lm3J0wahNw5+VTTs+y
Score

10^/10

discovery execution
- Executes dropped EXE
- Loads dropped DLL
- Command and Scripting Interpreter: PowerShell
  Using powershell.exe command.
  execution
behavioral1
- Target
  
  resources/app/node_modules/color-convert/route.js
- Size
  
  2KB
- MD5
  
  ff30f2b9f4a3761be9d12787f059f625
- SHA1
  
  01005d1f2b540c4df7e02fb7ac06c60ba3bae371
- SHA256
  
  5f1420af4a106eaa68ed7b4bb5e46f47e0f251169e38841ec8262447e4691b5d
- SHA512
  
  141f74f51ee662fc5a263e0cb193c47c8eb66201a27dd1a146d253efb413684c7107e3910a02167de8c649693929fe1781f79a6783d6115e2ca17b7adef9c594
Score

3^/10

execution
behavioral2
- Target
  
  resources/app/node_modules/color-name/index.js
- Size
  
  4KB
- MD5
  
  405840ec3052209f357288fe4c0f4414
- SHA1
  
  db20105dc898fa8aa6706492502431c680c0dc94
- SHA256
  
  97dabd7ebb70c33c19ccfa6956377fc722d9769924903f42a3bede30d83a8592
- SHA512
  
  9de93ee7b458a9d6b97664022909ad25a7cb89c2cfdd8ee19aa2e126566b7a7a930b24143a2a76f83dbff19f1a67b0a71de93e8ab248720c2ee243396e869451
- SSDEEP
  
  48:2UjYDSI/sGH0LU2pkptyuoD+5Q1gEeHScW1wsb8RkMq+txMtuWJaf+DUC5xVO:Z8DSdGepkpguogQKmqstuWJafYU
Score

3^/10

execution
behavioral3
- Target
  
  resources/app/node_modules/concat-map/README.markdown
- Size
  
  1KB
- MD5
  
  3de808d1c878e1d12f12c8d849710db2
- SHA1
  
  132e6e8fd1d19ec2422fdcde00840d8237e44094
- SHA256
  
  2bc76dd6de6869fb5335e04c066edd5ab9d99a2cf7958a25e3c7c8c48768b5b4
- SHA512
  
  c707b42c02d0fa2aab9a32835095fc15a2561c2d2fce85a11620b9977971cd045bfb47c222f62d21b0d20676ffee69c380f007a484b52d3de1b9c1b22f73c167
Score

3^/10

execution
behavioral4
- Target
  
  resources/app/node_modules/concat-map/index.js
- Size
  
  345B
- MD5
  
  8ef754ba23fdd37b3e8a1c52739ace80
- SHA1
  
  a3063f014cc693b320dbd64de3243a79247c1e05
- SHA256
  
  091b65d778337599d0140b35d53c038603d1732d27c33bfe39e03871a96926b2
- SHA512
  
  cec77060f95cd26aa28951db84745d405ce8a8f45761d2af11dc602eb75578fddb3e0d7f45e12d1750a45adaec8452b648021773488dc8f49235fc75b819a5b2
Score

3^/10

execution
behavioral5
- Target
  
  resources/app/node_modules/ejs-electron/index.js
- Size
  
  4KB
- MD5
  
  d441fba9399d196f943308f66d215d95
- SHA1
  
  76557f8a00782c3503b62784098b7832256c136b
- SHA256
  
  4574224bdcf1a47aab456dbec7b485d7cb8bd62bea5295f85db622b3ebab0c1b
- SHA512
  
  7f11d59d870c0ae386b6c0ae4a65b2ab49445ce8b36528323bb2a03a8a55611c8e71d2c7439f0a57c69fb7cfdc2d05fde59e535e0da36adf24947a131db18a0f
- SSDEEP
  
  96:Px5TgcV51Bi0BT/ddv6KEAHTD9MJ4ZVM2:PjrVfjPdPpk4Z1
Score

3^/10

execution
behavioral6
- Target
  
  resources/app/node_modules/ejs-electron/node_modules/mime/Mime.js
- Size
  
  2KB
- MD5
  
  5a77829e31fd521878c9484a90ff107a
- SHA1
  
  73efaff8e2e9adb871396c15c076dbf28757949a
- SHA256
  
  9482411a27e56e69e9ff5ae077b25f64c38768ae268ac07ab74a9896b582b6a9
- SHA512
  
  dc542b656f18818fc5caab6bebaf67f2f33691661196fd588eeba8bb8d1520ea61f76df314d407e0e23b405706889f0e73f0bc61871a36764d2c3564a44b1c35
Score

3^/10

execution
behavioral7
- Target
  
  resources/app/node_modules/ejs-electron/node_modules/mime/cli.js
- Size
  
  1KB
- MD5
  
  f13333cd6bfe3dcb5e949337a7186ad4
- SHA1
  
  b7f33b24da6e984dfb6c0c8c7dcf074c613673c2
- SHA256
  
  15da8d89bd7fc3a4025f79197a02a62284a95add244ec67bdd2b8dff918b5052
- SHA512
  
  96c5c21a657f284900cb966bccaac351fd540ec7197b64cf06018b45d57118b15a29040d78b874fa5622e66fb5b0f1a87bd6a16a50c930e910c6984bef7825c6
Score

3^/10

execution
behavioral8
- Target
  
  resources/app/node_modules/ejs-electron/node_modules/mime/index.js
- Size
  
  127B
- MD5
  
  f18d3eb05bbc4d65415ee72c4b5d4dff
- SHA1
  
  e2d3efd8917c4ff9cbe668474891269d3fedcb37
- SHA256
  
  7b35e6b3b981b498b62860b99063916772a7a199125866d4593db952ba1c14b9
- SHA512
  
  65316d6a06666e5acdb6fd293fcb737109a264fb6ed1174e7853f86b32d2b334fab3280d28535be21524fa15f86bc8f16b663461439d6bdf4ead0cba4b297eb5
Score

3^/10

execution
behavioral9
- Target
  
  resources/app/node_modules/minimatch/minimatch.js
- Size
  
  25KB
- MD5
  
  43855baa9189d8dd645c44afc4132ec1
- SHA1
  
  f21a6b3c6d1d71bb65e4e6e0af1bf1baba3a207e
- SHA256
  
  ebae64a212004e293fd7b536f33a2ca830452f71377f4b51fa0a0e9885ee6a93
- SHA512
  
  b67a9875c4c70c765c00e24d02ee807c22099c66ce1ce41ffca4f47d53deaae0c2c9a39e19eaa42a94c31b937888681f945da3704f3e6e1a3e0711bda00ad77f
- SSDEEP
  
  384:Dxc8r7MvghVE1WtnxTEVLctXtbzdE281rY2qUkrwVzB9Xo6NHikm5PTt0VOKtEVH:lc8/vCWtnFoLc9tblNfWtEVSbsYm
Score

3^/10

execution
behavioral10
- Target
  
  resources/app/node_modules/protocol/benchmark/benchmark.js
- Size
  
  4KB
- MD5
  
  aed52dfc6ee45583ee47274cbf80b6cc
- SHA1
  
  043ea2811d13b41cb7c230ec66d2a667de296cb3
- SHA256
  
  42091e950dea3a76bd810950f8f97dd6fad8da62101e8130834ecd0917d4b3c1
- SHA512
  
  cddeefe21289bd95b7c404f3625527558d247e4c476d757022918b52bac7490af6e1ef5b0a5f18498240f93edbc1d9487fd1d632ac043acdeb9781e19e7ccadc
- SSDEEP
  
  96:Jg/TgQH3o07o+FNVh3+S++bzGYXUt+8vj8uPVGZagVy5sy5uj0H0Wjw6:JLQH3HFNVhuSTbzGYkw8vj8u8am0H0Ox
Score

3^/10

execution
behavioral11
- Target
  
  resources/app/node_modules/protocol/benchmark/input.js
- Size
  
  2KB
- MD5
  
  785edd8cc7a89e1f0ba909e7cbe94c75
- SHA1
  
  c3950f31737fdfab65d8a0808fd04792c5b6aad8
- SHA256
  
  f3b7561e39120dd693a57ec041d03725382428eefd7e44a073d3706b427d87bd
- SHA512
  
  3b0e64549c54b1b84c5607a67395a92d0a2a84501adfa7094bb90eec079f7060837c2ef23c71960ef3ef22f182b5838c48a1fbd6a471998eaae213b4f814a9aa
Score

3^/10

execution
behavioral12
- Target
  
  resources/app/node_modules/protocol/benchmark/protocol.js
- Size
  
  1KB
- MD5
  
  4d8b4b39a39e5e1a71cf9c1fd47709a6
- SHA1
  
  8157ed84ad3f1acbf25a47e5a5062613dc5015fd
- SHA256
  
  4536a65cfaa548aadb18d5eae8df1fc601446c6938a1f2742e9e1e9a238ff7fa
- SHA512
  
  9f53903d1baa64339e75700b99c28a8616517005c139dc088d1b4a5e38b242881bdc8b2ffd4866b2655c714fed9d3662ae94a201a47e0f2375ea66c3cf2eaa91
Score

3^/10

execution
behavioral13
- Target
  
  resources/app/node_modules/protocol/lib/flatten.js
- Size
  
  1KB
- MD5
  
  d367349071b4ae45b07eb1a58bd7f1b4
- SHA1
  
  3023548890b8c2f3fc56578953ac35f7a455af6e
- SHA256
  
  ad7e89663b817c86960bbcd61ff8b235bd6cfc4e25b1802cebefa73551d258cf
- SHA512
  
  4458345a4bd8031edb9f232bec17090db3690f0ca33f93219bd0a6c8d73c18bd68568d0b784bd18fd4e3286eba3c91d3bd0cac19c42f8b3f4020ffaba76b43d0
Score

3^/10

execution
behavioral14
- Target
  
  resources/app/node_modules/protocol/lib/flattenSchema.js
- Size
  
  2KB
- MD5
  
  5f4f1b166ebb578045282e5feeb975a8
- SHA1
  
  ea39b5aff8dd83774f73329229f0730a865742f8
- SHA256
  
  d8c40b4e3f079d5f6f096d6bcd89da0fbbc2b0e877abe4048998fc8f68140f23
- SHA512
  
  370bf23237141ff61608893771a7de8d5b9e223b143c2a4103d7ec3ee00ea5b230d231eb9af3fd867357a7387d02781df76ec0c76ec45dfa0651947f6f10f3cb
Score

3^/10

execution
behavioral15
- Target
  
  resources/app/node_modules/protocol/lib/generate.js
- Size
  
  4KB
- MD5
  
  bf5c409a2747f75a99dc1e4b0b8357ba
- SHA1
  
  4f2c2e97d6c6428bdc4a088d3ad008636d3fdaee
- SHA256
  
  24cf5c56cd623937ccda186290c2fbb4453331a9c39b0b03f079442e00f47643
- SHA512
  
  59a795784201f0a8fc346be681f0b544ab94947b4225dd355c70c2b8df112e59ff9063f55d9ab2c2b6aac3f9a375b4889e6cd8b1606b4f98f26e8a53d823095e
- SSDEEP
  
  48:J+bs5JslcE3QQHFs5DST93oVFJV8PHsNUbVrkAvEZGbdNRR0KJRwZt+6np3aGbDc:Jg/TgQH3ooP5hLvEmeERLOlr/npVNGn
Score

3^/10

execution
behavioral16
- Target
  
  resources/app/node_modules/protocol/lib/index.js
- Size
  
  1KB
- MD5
  
  06f500160ac7a72c194f9e56feb1944d
- SHA1
  
  958041371c692d00d62d84b83464f85e77a1ab0a
- SHA256
  
  b18be9ba6637b8a8265fb12bde098f8ab79c9424e3b7a985f5f426214dd696da
- SHA512
  
  2f506488ffba16b90ab630cc36227c7809e519f432f11417ad23a19b4ed58dd9b1b097f0d343fd2696ebda1e92fc90e9316e3537a6d7b442684a78edcdbdd824
Score

3^/10

execution
behavioral17
- Target
  
  resources/app/node_modules/protocol/lib/parse.js
- Size
  
  3KB
- MD5
  
  33fa81cdeeca62dcfc4ee4fddc35b682
- SHA1
  
  56c7ba62faca753ed7e7a7ce20c13c6463f55e04
- SHA256
  
  f9617d4890bc02d093016432736f03b4209e698a462542e269a33b0585996583
- SHA512
  
  cf302441230fa926b1644883b4bdb5242f71259cc7ee3fbffe653100415132ffc60f4133f5bb15d996c1a2a28f8dd395e4df4e58deaf25019a8b25def1d1b6cc
Score

3^/10

execution
behavioral18
- Target
  
  resources/app/node_modules/protocol/lib/setup.js
- Size
  
  2KB
- MD5
  
  d336a9449018fb55c4b536a6d2f2ad26
- SHA1
  
  8ff7e2efa1918e3e173c942843f42dbb055825a5
- SHA256
  
  3cb7dd3c88c303550773ab7434b949a18258e24681337d9b0967a7f98530d8a9
- SHA512
  
  bde857b2251b395cd427ead86cfcf71d711cac13fb391c0fd2f38b0c4a0e720f24b4bbdf33fe2e6459fae04c83a8f7bd02de6e8f1e7290587faef340ba60af3d
Score

3^/10

execution
behavioral19
- Target
  
  resources/app/node_modules/protocol/lib/unflatten.js
- Size
  
  1KB
- MD5
  
  abc00ee24fc5e80ec876ea32c1db2b0b
- SHA1
  
  3a61753e6d42af1e25a168cd59ce937b3fc189b1
- SHA256
  
  a5a5f71309cc917ce73621d3f94ed5dcca2e72cfde04381462075b3337101bb4
- SHA512
  
  432b2f84283b51bc2c460380761e0a2d62ce17d561f89934c9b13109924deca6ffae7a393dcf076fc0f204ee4934666cd532208c214685438bd1d3f445f02143
Score

3^/10

execution
behavioral20
- Target
  
  resources/app/node_modules/protocol/protocol.js
- Size
  
  2KB
- MD5
  
  d2e56d25d4eb0c557fcbdd5c8b29a39f
- SHA1
  
  d9834cfd5997a256a53cca95700aac9953977199
- SHA256
  
  63f640cc41ac1beb9f5fc79e226ae3df08d1d6957cee100af858e1e32330602b
- SHA512
  
  4ecb983236770223b25702cf7d561698bab1a9d556b49ee7da2e5ef5337400349e6d81a436a190343e2272054afa0ddc831d6c67268808e35a32a7087404d019
Score

3^/10

execution
behavioral21
- Target
  
  resources/app/node_modules/windows-shortcuts/lib/shortcut/Shortcut.exe
- Size
  
  56KB
- MD5
  
  59375510bde2ff0dba7a8197ad9f12bb
- SHA1
  
  b7aef73fd5c9610860e2f3f6a3b8a21cb6873261
- SHA256
  
  74cd07ef186d995ad75a0c2a153d1dd6f7b563987f5aa0fefef0a095708c02dd
- SHA512
  
  eaa013b4885a4f05e998366317fe5bc46b7057c1f29653004787b0a6c40b445728a8ec63d0fa577e56293c34a27b508b7cc17a7a6ac95de3c42541a51ecd12cc
- SSDEEP
  
  768:p8AcstBy9afhyO45SqNf/mmjVrqvn84Bhbrqtuv:p5csny9TVheqhQn8Igt+
Score

3^/10

discovery
behavioral22
- Target
  
  resources/app/node_modules/windows-shortcuts/lib/windows-shortcuts.js
- Size
  
  4KB
- MD5
  
  6a189c41a3363a8ae600243c952edb05
- SHA1
  
  15980ebb621ed3936b2bccdf7f2c3294d57219e5
- SHA256
  
  acc3c7e29780aee7923b101855e25bd53cf6081f7553720f9dcefe6116ef891c
- SHA512
  
  b18297c5e83b22abb022ddd7622f187bddefb7d3e4ecba0d7fdb65d7926fe0f8107f1dc82005ee4af9b41c2993888576d60a637ad141f0c7a9bc75dcc00b16d8
- SSDEEP
  
  96:9TZeep5yuqi1CMzUucscpvqZMhhqYouHmGSGAs4BNOpAwSqjcOaUYR2INdIvcEW/:9TZePGCMzUlHpCuSSHmGFA7BUpAKjcYM
Score

3^/10

execution
behavioral23
- Target
  
  resources/app/src/assets/js/index.js
- Size
  
  5KB
- MD5
  
  959306e641b1474f109d59c7320d2663
- SHA1
  
  add0e58d53d96050af3a55b07bef4e2b3aebb443
- SHA256
  
  863203fb3952d5a921208ceff5cef705fc35bfb29519799ac5c1f8ca228fe437
- SHA512
  
  dcd41217bc980b5817456341fa07c9d7301f0188479850942042d07c0183068b621445dc6903367e3ce809afbfe52ee574c69cb9913da9175b3f1b1bcad1b5dd
- SSDEEP
  
  96:T4Q7+Jxx97Sf32ji3zIU5pRpwWNZ2+fO2eLILip9ih:sBbvi3kieofOfLILip9ih
Score

3^/10

execution
behavioral24
- Target
  
  resources/app/src/assets/js/langs/de.js
- Size
  
  2KB
- MD5
  
  7e92d2cad7c8fbc818773cd36fbd3c1d
- SHA1
  
  befce8d4b6c9a70aab397b21bcb6126aebd04014
- SHA256
  
  d3c464adc6d797c99d327ca99a44e8f0c09c27f17697b46ef5e18827447e8a00
- SHA512
  
  a19940ee4bc94428bb6dc4150c5aa33a48e43cddb5ce8390f0c5d307dc17e6099f8d9f2f6910ab2f49e283c88f469f6de595a45a18858145d8e351ec73d56cc5
Score

3^/10

execution
behavioral25
- Target
  
  resources/app/src/assets/js/langs/en.js
- Size
  
  2KB
- MD5
  
  fabd52d878afce034dcadd66d3eb4f89
- SHA1
  
  6c6fb98e987ae270c645ff8c0fa92d1d8335cc35
- SHA256
  
  0b13760ed920334039a7101c261b459afaba6cf54ce38141a0ca01240bd6c2a3
- SHA512
  
  cb92ea868e9579bd0d96c240567df0ed056b8901c415bf84fca23f7e2fe88f2e7727a1ef2592ccf0f81ad53fbdc1bb8db91cb5ea9062c0feff6da3e950bcdc0b
Score

3^/10

execution
behavioral26
- Target
  
  resources/app/src/assets/js/langs/es.js
- Size
  
  2KB
- MD5
  
  6e6fdf68120d784a17b10a8e1d87c2d8
- SHA1
  
  e6ef1aada60b098a9cbd60028a64a5f5aacf3407
- SHA256
  
  0bfb77caf7b42746b6738f4127ea215b43ed7d9e311b158d8776b22ae6a1e531
- SHA512
  
  be6b434436dafea7f545b208e525335d72013b9ac967b3a184598ecf06ed6fba1d5b6fda5ed59973f598648af3de4cbd1565622bb934300a238c733fe16760cd
Score

3^/10

execution
behavioral27
- Target
  
  resources/app/src/assets/js/langs/fr.js
- Size
  
  2KB
- MD5
  
  a35d19500b06754a3308ddb92c262511
- SHA1
  
  e449a9695a57b08391885cc5d91c567e49c99abc
- SHA256
  
  1c235fffe490afb6c0a7d0430fa9a25bfb5758eb35a538302c9157e7ba534896
- SHA512
  
  d1771f415ca5d57ab3b206d0cd3407ae34f7fe02c153a58b705752fa97600993a722edb6e4a90ac68e293c9f35b2479aaae901c2bf2641a9c2fd5e3fe98c764d
Score

3^/10

execution
behavioral28
- Target
  
  resources/app/src/assets/js/langs/it.js
- Size
  
  2KB
- MD5
  
  cfb1c019bf8ce6a54fecac85fe977c21
- SHA1
  
  58ca965580e469268907367383a22428809a5ea2
- SHA256
  
  fb0081fb62ae85e7cb8e54ec6bd7c32c074e2bc248004482ef71f56a225d923d
- SHA512
  
  3f187905cb9e5ce62383307a655df103a403882257358be4c25d8b15a09998459b093b04c77a6e32063d9541b704409774b288df2ad8cb88d51929c00409d7fb
Score

3^/10

execution
behavioral29
- Target
  
  resources/app/src/assets/js/langs/pt.js
- Size
  
  2KB
- MD5
  
  4725585d5f554ae09bcb1a5cbdfaadcd
- SHA1
  
  b33ab03f201c43b8daf3c7b3a757eaca9e7f6d18
- SHA256
  
  40adb344950d94f896d4d87837183296351fb0a59b200f1c4a61f737d3d1157b
- SHA512
  
  e0744b221f65c797a56ef00b1a776ed181e33904ffdd422653e0beb7d79313cd88fcbefa0a5714668b325d8701b00889896b87d1bffbfd7f9f7c14f985917e3c
Score

3^/10

execution
behavioral30
- Target
  
  resources/app/src/assets/js/main.js
- Size
  
  31KB
- MD5
  
  65ff904994ff8f987e4df244a8d82053
- SHA1
  
  aba40b79832fe2baaca9d0e33204541965cf1c0e
- SHA256
  
  f3236e7d97f4c534491463f81dbe871296ced35373cb0f61fd8d4325d523ca6e
- SHA512
  
  cab16921dda8f27f6af4b2347bcbc34d6ff05553b6f891b942ba5514eb4959c68facf6b1184c7125932e3950bc7de77c40ac696b56d3cc7b5aadbbcc566ad1d3
- SSDEEP
  
  768:yREsGjnY1Ss0znYHisOffnYnLJL4UiW1DSj757HVPEf:ySsGjnY1Ss0znYHisOffnYnLJ7oX5ZP6
Score

3^/10

execution
behavioral31
- Target
  
  resources/app/src/header.ejs
- Size
  
  38KB
- MD5
  
  eef60d35e9f75d3c7030d0574250e56f
- SHA1
  
  6d29148b90187fa1583652bc8799e65efa10f637
- SHA256
  
  3cf434b126e4369ffb8e9f4d489daee1aad9f47828850386984b3c752cdc7042
- SHA512
  
  529bf36dacd2fc808e63a8091a8aa92f5d3d39c23077bc72298bf052f1bdcd6fc05282608ce5337643d3c1a794bdde2b8d364f7deb0c4b7ae75810be3bdb165b
- SSDEEP
  
  768:Xkos/1jkos/1kQj9U38pO4MftndjyQj9U38pO4Mftndjh6:c/a/OQj+O9MftdjyQj+O9Mftdjh6
Score

3^/10

discovery
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Executes dropped EXE

Loads dropped DLL

Command and Scripting Interpreter: PowerShell

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32