Overview

overview

10

Static

static

batting.bat

windows7-x64

10

batting.bat

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    batting.bat

  • Size

    1KB

  • Sample

    220919-trqhdacagr

  • MD5

    c60120d5f2e5e08fa454beec74447bb8

  • SHA1

    76309120d6320a4ee36d2d194b06797e866da38f

  • SHA256

    2d1e80c5190368d3089583dd5420a7e939daad099b3632e883611b791313f3b0

  • SHA512

    23364c3cf57875fea2565297d8773d2deae9ae37a2d0c78a72b0bf01fda51a90c58362a0bb2b0c66c96fc6a32beaf21b6dd53540469f02b6788615f2456a5aeb

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://meeronixt.com/gate

Targets

    • Target

      batting.bat

    • Size

      1KB

    • MD5

      c60120d5f2e5e08fa454beec74447bb8

    • SHA1

      76309120d6320a4ee36d2d194b06797e866da38f

    • SHA256

      2d1e80c5190368d3089583dd5420a7e939daad099b3632e883611b791313f3b0

    • SHA512

      23364c3cf57875fea2565297d8773d2deae9ae37a2d0c78a72b0bf01fda51a90c58362a0bb2b0c66c96fc6a32beaf21b6dd53540469f02b6788615f2456a5aeb

    Score
    10/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks