fd4621126f856da314435d80d992ebafe4d4f235cf126a0ea1c5d14351f9933e | Triage

Sharing

General

Target

71075e76f94c759f85f68b8357ae000a34ed2add03a861987a665068b12c8d29
Size

61KB
Sample

241221-shh69s1rgq
MD5

6ff0a23ca13ea06caa7204fb7c8d787b
SHA1

3cedcf32ca0224e1d3522df0d1ffba1824419e6b
SHA256

fd4621126f856da314435d80d992ebafe4d4f235cf126a0ea1c5d14351f9933e
SHA512

9bb8ca9e255f90537cedf143fc551bfd8ae3d91d028d8df1e7f5845935b4ceb38b9bd3c2ed4b66a9588ce603428171e70659c5dfeac4ea93f63f7084c06f39d1
SSDEEP

1536:wX/0tmC50c0zFpQA1YiKfJq6nqRHnP8tuXv3Xg6dQloDGq5sia/n:6s4CdtA1YiKLnqRPquX/XFdQl5iQ

Score

10^/10

execution

Malware Config

Targets

- Target
  
  71075e76f94c759f85f68b8357ae000a34ed2add03a861987a665068b12c8d29
- Size
  
  227KB
- MD5
  
  456351d25f2493ebd899799fcee37544
- SHA1
  
  0a98c1dda575e27bb37eca290e659ad396cbfd4e
- SHA256
  
  71075e76f94c759f85f68b8357ae000a34ed2add03a861987a665068b12c8d29
- SHA512
  
  f1c29c6a97df557695c65756c8e6412f61eb06173b3a77e68cb4b7cc71f8f68c4d36cd698f3df1d493c9f03e8a578c23a311b4027f10697fb9cf1c21705e244c
- SSDEEP
  
  1536:nwg44SilsIL6nyHaRuIuA3uJ6rdyNaEW8wljVt6nyHaRuIuA3uJQrdyNaEW8wljz:nzPxPU/8GJG/oGJeGJC/A/X
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2