f3fec0f30ce62488384b9158d9341b27bdd798114416fb98e01149aaadd93290 | Triage

Sharing

General

Target

56b1e069cdb86c6b58a3fff01d2275dbe47a7f7fdac49cab316c764e0484ef4e
Size

63KB
Sample

241221-r1tv2s1per
MD5

ee4daf81a977ebefbd36f44d6faf25fd
SHA1

2f56e809de1c9f45f456bcc2446f4f47b71593a4
SHA256

f3fec0f30ce62488384b9158d9341b27bdd798114416fb98e01149aaadd93290
SHA512

4223326587c7d6993bc169afc75002c21e766e569f5dce48f79c5e2b393559db19d816cb8a23450274b7b811292205b878ac8d54da98837846095f48a1dd3aff
SSDEEP

1536:JNvLZ6KExL77LACHV08/xNcZeCBCNWQ+/9xpSAau2w:nvLkBaOsk09SA

Score

10^/10

execution

Malware Config

Targets

- Target
  
  56b1e069cdb86c6b58a3fff01d2275dbe47a7f7fdac49cab316c764e0484ef4e
- Size
  
  235KB
- MD5
  
  1ecb2fb76ca7c3ab389b7effa32e25d4
- SHA1
  
  5439f8a5a5e2cd5ef88147c6f1c8e118b4894fef
- SHA256
  
  56b1e069cdb86c6b58a3fff01d2275dbe47a7f7fdac49cab316c764e0484ef4e
- SHA512
  
  b44dc650f70924408c844822ca2d684f651d622b0c17dfa305540abfbfc3c0e5d340092ee56a5178936d3523a3a8e5aa7a9904ac83d1ca73404ceb8062895850
- SSDEEP
  
  1536:nwFI/TEEj9J6EhsyWUs0G2kvjDFzq7cgWkJQ5J6EhsyWUs0G2kvjDFpcgWkJQOcw:nUJiLJrFRJBJj
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2