Overview

overview

8

Static

static

3

Attach.exe

windows10-2004-x64

8

Resubmissions

17-01-2025 15:49

250117-s9jbcavjgz 10

17-01-2025 15:45

250117-s7d9lsvmdl 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Attach.exe

  • Size

    12KB

  • Sample

    250117-s7d9lsvmdl

  • MD5

    e9932c15bab57210fd2b5d03b50529f6

  • SHA1

    25835a6c7ef22d0aa10d20df7d29805de7e662cc

  • SHA256

    a39231d9cc51041982d93288f4201c2d4cc43242824fbb93ac0f4f459dd6b983

  • SHA512

    b1e35a7f19767773ef15a6133e3f3337033e71f551f8342efdd0cc3215fc9f3fa16c97c141bfd41e7a61f139329648451da0f79966e69ae5be6693ac1074996d

  • SSDEEP

    192:t9tgZnq4y19iy+Cv3QotaxwfZVzbmQMyL79zcB9Dil7jOCcSwh8:tsZnq9lxv3Q4ZVzbmhytC1il7jtclh

Score
8/10
discoveryexecution

Malware Config

Targets

    • Target

      Attach.exe

    • Size

      12KB

    • MD5

      e9932c15bab57210fd2b5d03b50529f6

    • SHA1

      25835a6c7ef22d0aa10d20df7d29805de7e662cc

    • SHA256

      a39231d9cc51041982d93288f4201c2d4cc43242824fbb93ac0f4f459dd6b983

    • SHA512

      b1e35a7f19767773ef15a6133e3f3337033e71f551f8342efdd0cc3215fc9f3fa16c97c141bfd41e7a61f139329648451da0f79966e69ae5be6693ac1074996d

    • SSDEEP

      192:t9tgZnq4y19iy+Cv3QotaxwfZVzbmQMyL79zcB9Dil7jOCcSwh8:tsZnq9lxv3Q4ZVzbmhytC1il7jtclh

    Score
    8/10
    discoveryexecution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

      execution

    • Downloads MZ/PE file

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks