Overview

overview

3

Static

static

3

run.ps1

windows7-x64

3

run.ps1

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    swprv.zip

  • Size

    54KB

  • Sample

    240701-exdnfawcrd

  • MD5

    82e81e2da9909dd11a6489592e362a52

  • SHA1

    2ee281816a3ce55b955b35d8579ed3bb42579de6

  • SHA256

    fb78a37d79a05c9d680de61e1949b26f8bff33d222d8ba75b9dfb2578c753f9c

  • SHA512

    6277977d778e07b76eff6097d928bd5cc1304a944de54174b8923dc7a5b16ed5b46aa2ac2a8a590cb718d0687fbb54dfab54ec5a97d8d7f94f0632ab2592322d

  • SSDEEP

    1536:j3FH9EEWT6MdJ+VVXh3ilLBrdB8rFT/hFBaK74gjq:R9EbBJ+VVx3uSxZ74oq

Score
3/10
execution

Malware Config

Targets

    • Target

      run.ps1

    • Size

      68B

    • MD5

      17f5c792ca5dba4cf47a56982d7d4551

    • SHA1

      f3d3684eefd70ffbe6e5cbc88031382bba443a6f

    • SHA256

      ac0a469bd627fe912176f38dc0691f1159bdccc811899e79e22102d12325c097

    • SHA512

      2dd27f46506b8351faecf2200e4ab05e1509fb5fcb010c1d338f08bb2224257978638851a50538546a796ed2861e759898fbdd1f7c23e1c6cc8880296e2f01fe

    Score
    3/10
    execution
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

1
T1059

PowerShell

1
T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks