General

  • Target

    BB44.vbs

  • Size

    996B

  • Sample

    210408-ydrtyqaeze

  • MD5

    2b011276450d65da7199a3cc79ae47c1

  • SHA1

    649a7d5eb8de1dcb56909be2c8d21738f36757cd

  • SHA256

    b2563233b82484707e602277c33e80c2fade35c29a87e9992eb5e16095d00bd1

  • SHA512

    41fec8be476febc9e221bd4cb82f096b5bd6aa069ddd04228025c81215fbc773b743a5e4b24ef89fa94506b62bbbc6743f5d718486da85dc37c10628e8b9b61e

Score
8/10

Malware Config

Targets

    • Target

      BB44.vbs

    • Size

      996B

    • MD5

      2b011276450d65da7199a3cc79ae47c1

    • SHA1

      649a7d5eb8de1dcb56909be2c8d21738f36757cd

    • SHA256

      b2563233b82484707e602277c33e80c2fade35c29a87e9992eb5e16095d00bd1

    • SHA512

      41fec8be476febc9e221bd4cb82f096b5bd6aa069ddd04228025c81215fbc773b743a5e4b24ef89fa94506b62bbbc6743f5d718486da85dc37c10628e8b9b61e

    Score
    8/10
    • Blocklisted process makes network request

    • Drops startup file

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Discovery

System Information Discovery

1
T1082

Tasks