General

  • Target

    jjhgh.ps1

  • Size

    18B

  • Sample

    250120-3yzt3awkf1

  • MD5

    660a54a2640ecd1f3660cf745e1c716d

  • SHA1

    f44f310a14d58a75a9fa95ef93920a952db4deb4

  • SHA256

    4052e1f418b8b3fb4b1ab46f3166e464855efc08e0bbae7f894340b3c3d77523

  • SHA512

    4325cb481552166d95bd589de307047f6881c0e43459bfe29914a64fbca9b39513c16c5b9f9adfc96a210da911fba3393e9e8fb73be975a68b4a38faf17dac71

Malware Config

Targets

    • Target

      jjhgh.ps1

    • Size

      18B

    • MD5

      660a54a2640ecd1f3660cf745e1c716d

    • SHA1

      f44f310a14d58a75a9fa95ef93920a952db4deb4

    • SHA256

      4052e1f418b8b3fb4b1ab46f3166e464855efc08e0bbae7f894340b3c3d77523

    • SHA512

      4325cb481552166d95bd589de307047f6881c0e43459bfe29914a64fbca9b39513c16c5b9f9adfc96a210da911fba3393e9e8fb73be975a68b4a38faf17dac71

    • Possible privilege escalation attempt

    • Modifies file permissions

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks