e77ddb3f70d0ae02cd02771eca482812639922f3bd2c2dea7d15be4823721233 | Triage

Sharing

General

Target

e77ddb3f70d0ae02cd02771eca482812639922f3bd2c2dea7d15be4823721233.bat
Size

38KB
Sample

241119-ngme3sveqh
MD5

ff7c84fcf869e1120a301d4f7d5aaaf5
SHA1

b5b733d4c72fe8a8f486527e2a363507ba190e40
SHA256

e77ddb3f70d0ae02cd02771eca482812639922f3bd2c2dea7d15be4823721233
SHA512

5e211f8e3e1f8fb29709a1274fd90d2554c4b6168512722ad40624bfe44577e26e6968f8a84a03ffb64bd606a7da95f9839466c197976a81c1d10c33f619d51d
SSDEEP

768:zyB55VdZq6uBZlNB+ZWV7k28xsqIgfbMCAudXydy9jyS5SDM/rPQO8QeLzlh/FM4:uLRFeYu

Score

8^/10

discovery execution

Malware Config

Targets

- Target
  
  e77ddb3f70d0ae02cd02771eca482812639922f3bd2c2dea7d15be4823721233.bat
- Size
  
  38KB
- MD5
  
  ff7c84fcf869e1120a301d4f7d5aaaf5
- SHA1
  
  b5b733d4c72fe8a8f486527e2a363507ba190e40
- SHA256
  
  e77ddb3f70d0ae02cd02771eca482812639922f3bd2c2dea7d15be4823721233
- SHA512
  
  5e211f8e3e1f8fb29709a1274fd90d2554c4b6168512722ad40624bfe44577e26e6968f8a84a03ffb64bd606a7da95f9839466c197976a81c1d10c33f619d51d
- SSDEEP
  
  768:zyB55VdZq6uBZlNB+ZWV7k28xsqIgfbMCAudXydy9jyS5SDM/rPQO8QeLzlh/FM4:uLRFeYu
Score

8^/10

discovery execution
- Command and Scripting Interpreter: PowerShell
  Powershell Invoke Web Request.
  execution
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecution

behavioral2

discoveryexecution