Unidentified PS 001 (Malware Family)

Inventory
Statistics
Usage
ApiVector
Login

SYMBOL	COMMON_NAME	aka. SYNONYMS

ps1.unidentified_001 (Back to overview)

Unidentified PS 001

Actor(s): APT-C-12

Recon and exfiltration script, dropped from a LNK file. Attributed to APT-C-12.

References

2020-02-10 ⋅ Bit of Hex Blog ⋅ Matt
Suspected Sapphire Mushroom (APT-C-12) malicious LNK files
Unidentified PS 001 APT-C-12

There is no Yara-Signature yet.

Propose Change for ps1.unidentified_001

In which category would you like to suggest a change?

What would you like to do?

New Alias for ps1.unidentified_001Please enter a new alias that you think is appropriate for Unidentified PS 001. Give a reference for the alias in the box below.

New directory name for ps1.unidentified_001Please enter your proposal for a new primary family name that you think is more appropriate than ps1.unidentified_001.

New Common Name for ps1.unidentified_001Please enter your proposal for a new primary family name that you think is more appropriate than Unidentified PS 001.

What would you like to do?

Add DescriptionThe Family description will be visible on the family details site.

Change DescriptionChange the existing description like you think it would be advisable.

If your designated proposal does not fit in any other category,
feel free to write a free-text in the comment field below.
Changes regarding references should be proposed on the Malpedia library page.

What would you like to do?

New Actor for ps1.unidentified_001

Which actor do you think should be removed?

Explanation / ReferenceWhy do you think this change is advisable? Feel free to include references.

Your suggestion will be reviewed before being published.
Thank you for contributing!

Propose Change of Library Entry

URL

Title

Authors

Language

Date Please use YYYY-MM-DD, YYYY-MM, or YYYY.

Organization (optional)

Referenced families (optional)

Comment Add additional information to explain your proposal.

Your suggestion will be reviewed before being published.
Thank you for contributing!

Impressum Datenschutzerklärung

Unidentified PS 001 Propose Change

References

Unidentified PS 001