f7b458806520970dfc71f85a1a298775716a74e7a103b42dd97520cb9126edee | Triage

Sharing

General

Target

9b0486b8047a9aa510a5b9d324a02e1039c178342690201da2b26ebad8265ad3
Size

46KB
Sample

241221-r7nbva1qfn
MD5

463e4979ecafdace69f1fc69e9987d11
SHA1

42e9a7e9d7f47faeb2f4a694d98a8b4f4acf952c
SHA256

f7b458806520970dfc71f85a1a298775716a74e7a103b42dd97520cb9126edee
SHA512

6152831b2edcb8578a8315fa6c5cc60d20e4884aa7bd21f7960c392b9d3c9138b78e723be497783f7dcb959981920ffd43b2191e28bb2a16dc25c775e6f59047
SSDEEP

768:9xHAYsZeEe13lUDpWBI2rqv5lEc8mNf0wD17GXQ0phJFerzEh9iH06XyFWOCdGtT:DHpgeEehqEq5lEczNfTBGXQ0phJmEhYm

Score

10^/10

execution

Malware Config

Targets

- Target
  
  9b0486b8047a9aa510a5b9d324a02e1039c178342690201da2b26ebad8265ad3
- Size
  
  201KB
- MD5
  
  9a49ba343c891aff5391cd0ae291e37f
- SHA1
  
  e24cd037b734afab053beec56160a06bcd8c66e1
- SHA256
  
  9b0486b8047a9aa510a5b9d324a02e1039c178342690201da2b26ebad8265ad3
- SHA512
  
  0e7dd2055308afe62d43388a40e4b97075a9317b1b94bd74cdeee88e11e22630a3868d59ee2fad4bb704a4965242c95243c7862e8dd9dfbbaf72613785e671d2
- SSDEEP
  
  1536:nwHi8BJQbeYCJHwax8nUV0YAlWZCr65lvxSs8v6BJQbeYCJHwax8nUHYAlWZCr6F:nfyPiy8ZyP7y8ay8dyPKyPC
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2