834119503578a3813a4cb7f1080cd685b4e98ed8262f592c3c4b3eaddcf812e0 | Triage

Sharing

General

Target

20044126260.zip
Size

860B
Sample

241120-rxyd3ayelj
MD5

70f1fd33683229aa8b2b350fea24ff83
SHA1

8c69ca81bc5605aeda9545d9a2536f77b6840077
SHA256

834119503578a3813a4cb7f1080cd685b4e98ed8262f592c3c4b3eaddcf812e0
SHA512

90e9ead3c64124cb34e0b04d296030c554a14edfe869b7ba94c8d7b3804f2d88603c51bf9c6470da3f2c7126f2e7f3e9c94b74e1ecd5b150dbc373ac6686a082

Score

8^/10

discovery execution

Malware Config

Targets

- Target
  
  f80c79037cd03eb52f048e9788d4c0f677acdbcb867ff617089ffa9f0d3b8b46
- Size
  
  1KB
- MD5
  
  093fde8870e649d03f61e7c09ed2c16c
- SHA1
  
  fd3a7fc78f8c10e1d68e797a6e9c17c950e55caf
- SHA256
  
  f80c79037cd03eb52f048e9788d4c0f677acdbcb867ff617089ffa9f0d3b8b46
- SHA512
  
  9834256a00d6e13cf50e470d628c9181ee14bc2203f1750c8e0555ce3a779c212fc44dc0d9c719aa05b4f85e20f4d5aa324b0c67d4404e59f235c527abb051b0
Score

8^/10

discovery execution
- Command and Scripting Interpreter: PowerShell
  Start PowerShell.
  execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecution

behavioral2