37ec4f90b80e2800e8e7fb2e45f61778d4b8bcf22a5919fdce984f14f22177ab | Triage

Sharing

General

Target

16bf57f45f0a05f0aff93dfe37d7c6998bee82e60e00c644e28f6d04f239bda4
Size

46KB
Sample

241221-sj1sps1qev
MD5

f4aae734a7bd3fc70a042d415b64a760
SHA1

6f36605df84363e7e46aefef29d90467c0d0f803
SHA256

37ec4f90b80e2800e8e7fb2e45f61778d4b8bcf22a5919fdce984f14f22177ab
SHA512

f2f358de2beb8988a126b083c3d3bb0468e3e4f2f69c6b868039dc9645998db78dc4117f2977b1ca55cbb3ede3a55b2e6d128d8fb819a7008f1f6761bff65557
SSDEEP

768:SOyQFBGPwxsMrJYN10hO5TnAuZc9p9/WhSuj1CfT2bPa99IMEhYjSyCT09z7Iu:5JX9s2Ybxkp9CSuj1Cb2za99IMpzCTi3

Score

10^/10

execution

Malware Config

Targets

- Target
  
  16bf57f45f0a05f0aff93dfe37d7c6998bee82e60e00c644e28f6d04f239bda4
- Size
  
  198KB
- MD5
  
  812d33d3639081862f70e134d7b8669b
- SHA1
  
  40d2444c622c6b143f354e1e87b196ee369c975a
- SHA256
  
  16bf57f45f0a05f0aff93dfe37d7c6998bee82e60e00c644e28f6d04f239bda4
- SHA512
  
  fe5835ed046fed240f22747e7f8c069f052b7de5f9230c665af4c85088259720c8df77f73becee61a5a427d412ea8035c136758f117edf9eb7b0b97c866e0644
- SSDEEP
  
  3072:nvM6wb+7OOelgQoKOO0lgQoflgQoKOOSOOn:3ONlgaOplgvlgaO3O6
Score

10^/10

execution
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2