PowerShell: Send a Toolkit & Receive/Analyze evidence over a continuous Client-Server communication during an IR engagement !
Tags
Common Information
Type Value
UUID dff989b0-3dd9-439d-a4be-996b87bb1130
Fingerprint a83abd536109ac91
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 21, 2016, 12:36 a.m.
Added to db Jan. 18, 2023, 9:28 p.m.
Last updated Dec. 23, 2024, 8:19 a.m.
Headline Cyber Wardog Lab
Title PowerShell: Send a Toolkit & Receive/Analyze evidence over a continuous Client-Server communication during an IR engagement !
Detected Hints/Tags/Attributes 0/0/3
Attributes
Details Type #Events CTI Value
Details Domain 1
sslstream.read
Details Domain 1
filestream.seek
Details Domain 5
filestream.read