92a8cc4e385f170db300de8d423686eeeec72a32475a9356d967bee9e3453138 | Triage

Resubmissions

20-01-2025 07:05

250120-hw19wsxnfp 8

17-10-2024 09:45

241017-lq58fascng 10

Sharing

General

Target

fix-error.vbs
Size

74KB
Sample

250120-hw19wsxnfp
MD5

acfba6ff2e80e0ebc80df9e7d326337c
SHA1

fe28d5756815fdac31a744a2f11c075f5b1892bc
SHA256

92a8cc4e385f170db300de8d423686eeeec72a32475a9356d967bee9e3453138
SHA512

2dcea669b4b3135bca6eba88542948188e25fb040db0a83bac03957b1fd59037998e7bb4a38774115ca051f07cbeacf99fd95113321e6c8fae4568a2e4e30f00
SSDEEP

768:BfaGWSO85ALmEcHUfkJ7Bate4LV1VZ6Y3PaNNHpXKMcpgUj:gGZALNcH77BajLbf61NR1pcbj

Score

8^/10

discovery dropper

Malware Config

Targets

- Target
  
  fix-error.vbs
- Size
  
  74KB
- MD5
  
  acfba6ff2e80e0ebc80df9e7d326337c
- SHA1
  
  fe28d5756815fdac31a744a2f11c075f5b1892bc
- SHA256
  
  92a8cc4e385f170db300de8d423686eeeec72a32475a9356d967bee9e3453138
- SHA512
  
  2dcea669b4b3135bca6eba88542948188e25fb040db0a83bac03957b1fd59037998e7bb4a38774115ca051f07cbeacf99fd95113321e6c8fae4568a2e4e30f00
- SSDEEP
  
  768:BfaGWSO85ALmEcHUfkJ7Bate4LV1VZ6Y3PaNNHpXKMcpgUj:gGZALNcH77BajLbf61NR1pcbj
Score

8^/10

discovery dropper
- Blocklisted process makes network request
- Download via BitsAdmin
  dropper
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

BITS Jobs

Privilege Escalation

Defense Evasion

BITS Jobs

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverydropper

behavioral2