ace4a01870850dea6e50d10c4c5618b87c298c2d4fe2b15ab993677fcf92f417 | Triage

Sharing

General

Target

40551fa2f76049bcc3e5fcbf304c911845f168eaa7771efff2311d043200da71
Size

46KB
Sample

241221-scj7da1pdx
MD5

8400d7f2e66529797d81e9c0948f0fdb
SHA1

e99103c611f86890f32afeeff3aed6a06ba39938
SHA256

ace4a01870850dea6e50d10c4c5618b87c298c2d4fe2b15ab993677fcf92f417
SHA512

7005175e0c0745816fe9ab93107a41479329b7f9f355b2556b1864d1d437c5e210a242841810897220e9ec5f5f4a498c5eb81849cbb6b476f370974f53de17f5
SSDEEP

768:txdlkoe2kdr5Ot2cnPNla0JiDlg7GmnQg14o/Ql2XG6VZ/XPOkaGqOKerTXGKY:Ddlko2Ot2cPG0Jia7dQo4ooKVZ/fIGqP

Score

10^/10

execution

Malware Config

Targets

- Target
  
  40551fa2f76049bcc3e5fcbf304c911845f168eaa7771efff2311d043200da71
- Size
  
  202KB
- MD5
  
  87e0ceab84726e7cb7f890650b2684c4
- SHA1
  
  8d2b922b604bdeb39faa0f78e99e435c9c5bdf45
- SHA256
  
  40551fa2f76049bcc3e5fcbf304c911845f168eaa7771efff2311d043200da71
- SHA512
  
  86e1afa1b8b12c4a83baf63c1c760444557fabf92866fe41ae8607f30536a4ff97e03b83923f82202ef5ce59376c8e3462ee75cba3e8b0ecebac855f750c0949
- SSDEEP
  
  1536:nwfnMv4xlx4f1fbUNEdXKJTyFteE8UeLQag/WqHoxlx4f1fbUNEdXKJ+yFteE8Ul:n2n3CoOIhoOyoOcbB
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2