Overview

overview

10

Static

static

1

path.ps1

windows7-x64

8

path.ps1

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    path.ps1

  • Size

    645B

  • Sample

    241008-xgw4ystfkq

  • MD5

    c8663c0dac27dabd209055ed1a8263b2

  • SHA1

    ad5d2dc5d44e4f93cfa2eee100f87397de515eae

  • SHA256

    3c7a7468940f46f5d152d8f28cd0b1380825deb8ce42bdddf2ea3f7270972790

  • SHA512

    1b5eb9d74de64f39ad70673882547195a672dbb235d958adc40d3829ba5e18b5c0900ea7537244ea74fe019209a3d946ab1fe4cd457b1854a514a3adeab406c3

Score
10/10
asyncratexecutionrat

Malware Config

Targets

    • Target

      path.ps1

    • Size

      645B

    • MD5

      c8663c0dac27dabd209055ed1a8263b2

    • SHA1

      ad5d2dc5d44e4f93cfa2eee100f87397de515eae

    • SHA256

      3c7a7468940f46f5d152d8f28cd0b1380825deb8ce42bdddf2ea3f7270972790

    • SHA512

      1b5eb9d74de64f39ad70673882547195a672dbb235d958adc40d3829ba5e18b5c0900ea7537244ea74fe019209a3d946ab1fe4cd457b1854a514a3adeab406c3

    Score
    10/10
    executionasyncratrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks