mimikatz | 5ba2868aef5853272278d11190a47d245424978dc035bcffc7860fa839e2b019 | Triage

Sharing

General

Target

Invoke-Mimikatz.ps1
Size

9.3MB
Sample

241205-tng2ts1rfy
MD5

4f4ba11d8409d5afd3b12db56ba64d9a
SHA1

c2dcf25358a3005cc5049e63ab19a93308e6838d
SHA256

5ba2868aef5853272278d11190a47d245424978dc035bcffc7860fa839e2b019
SHA512

61e84a251c99e1ebd100e2240dc2ffecff28897a86555abcb369e11297e4deb866482ec8f0efb1f34061916de7169d1e8ba058013d86e33688e903a2e69ab048
SSDEEP

49152:EQUp/yeGFD7Ew9THYyltLlstX9QgLk6bJ15PkYyNGYcjclMwxhisx9lADU/PlXJK:G

Score

10^/10

mimikatz execution

Malware Config

Targets

- Target
  
  Invoke-Mimikatz.ps1
- Size
  
  9.3MB
- MD5
  
  4f4ba11d8409d5afd3b12db56ba64d9a
- SHA1
  
  c2dcf25358a3005cc5049e63ab19a93308e6838d
- SHA256
  
  5ba2868aef5853272278d11190a47d245424978dc035bcffc7860fa839e2b019
- SHA512
  
  61e84a251c99e1ebd100e2240dc2ffecff28897a86555abcb369e11297e4deb866482ec8f0efb1f34061916de7169d1e8ba058013d86e33688e903a2e69ab048
- SSDEEP
  
  49152:EQUp/yeGFD7Ew9THYyltLlstX9QgLk6bJ15PkYyNGYcjclMwxhisx9lADU/PlXJK:G
Score

10^/10

mimikatz execution
- Mimikatz
  mimikatz is an open source tool to dump credentials on Windows.
  mimikatz
- Mimikatz family
  mimikatz
- mimikatz is an open source tool to dump credentials on Windows
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mimikatzexecution

behavioral2