General

  • Target

    txt.bat

  • Size

    4.8MB

  • Sample

    241113-klfasaxqdt

  • MD5

    b8bc030c21b77383109651fa9800b3a1

  • SHA1

    db9439324227858dc5b0f3d92a1e8cea5157de91

  • SHA256

    dd4f6120feace1379dd7978c513d4c839ee9e4b605d50360fac9412dcd6aae69

  • SHA512

    d5a13357a0653275ba49e9a2c1800bba27a93f71761db722c4e164dae450b817cb913aac1dc6ab25890196b6aa84a3e0c58fdd788cdcfc06908142422601a765

  • SSDEEP

    192:N4V1WVUQ5kY/Bjwdy8cdyGQenejPVuz0U96ys+b0M4CNEP2K1yL36b+w1tttROty:NKDGe+RHk

Score
8/10

Malware Config

Targets

    • Target

      txt.bat

    • Size

      4.8MB

    • MD5

      b8bc030c21b77383109651fa9800b3a1

    • SHA1

      db9439324227858dc5b0f3d92a1e8cea5157de91

    • SHA256

      dd4f6120feace1379dd7978c513d4c839ee9e4b605d50360fac9412dcd6aae69

    • SHA512

      d5a13357a0653275ba49e9a2c1800bba27a93f71761db722c4e164dae450b817cb913aac1dc6ab25890196b6aa84a3e0c58fdd788cdcfc06908142422601a765

    • SSDEEP

      192:N4V1WVUQ5kY/Bjwdy8cdyGQenejPVuz0U96ys+b0M4CNEP2K1yL36b+w1tttROty:NKDGe+RHk

    Score
    8/10
    • Blocklisted process makes network request

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Enumerates processes with tasklist

MITRE ATT&CK Enterprise v15

Tasks