99824d3ef35b84b0fc40214867e3c54e5518491efa1c5c9d796b1acb2cbe81d7 | Triage

Submit
Reports

Overview

overview

Static

static

2b4587aed4...1e.bat

windows7_x64

2b4587aed4...1e.bat

windows10_x64

Resubmissions

04-08-2020 12:19

200804-etrwz5wjc2 10

03-08-2020 09:10

200803-yxgv5hf29a 10

Sharing

General

Target

2b4587aed40db6e44cbff092b52b841e.bat
Size

218B
Sample

200803-yxgv5hf29a
MD5

c69dabb8c2f1ca155fb5fe3b0482d0a7
SHA1

b3faaf0bd82fe27b076ec814b2123cf962ead51b
SHA256

99824d3ef35b84b0fc40214867e3c54e5518491efa1c5c9d796b1acb2cbe81d7
SHA512

c5fc762e4d76e921bd55faa68fff86efe13f0b49b7cbeaaf2d4050cbb8e65f400399d84acf4056e36c8f560a8e9a7fd5b9c711fcb0ef23f65f14ea0724eef174

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

2b4587aed40db6e44cbff092b52b841e.bat

Resource

win7

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2b4587aed40db6e44cbff092b52b841e.bat

Resource

win10v200722

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Language

ps1

Source

URLs

ps1.dropper

http://185.103.242.78/pastes/2b4587aed40db6e44cbff092b52b841e

Targets

- Target
  
  2b4587aed40db6e44cbff092b52b841e.bat
- Size
  
  218B
- MD5
  
  c69dabb8c2f1ca155fb5fe3b0482d0a7
- SHA1
  
  b3faaf0bd82fe27b076ec814b2123cf962ead51b
- SHA256
  
  99824d3ef35b84b0fc40214867e3c54e5518491efa1c5c9d796b1acb2cbe81d7
- SHA512
  
  c5fc762e4d76e921bd55faa68fff86efe13f0b49b7cbeaaf2d4050cbb8e65f400399d84acf4056e36c8f560a8e9a7fd5b9c711fcb0ef23f65f14ea0724eef174
Score

10^/10
- ServiceHost packer
  Detects ServiceHost packer used for .NET malware
- Blacklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy