4641f107daa5b52f5ca15e0db5ce5c4bacacd7714e2f14792217539dde54a580 | Triage

Sharing

General

Target

Packing list ASPL22-23-1504_jpg.vbs
Size

321KB
Sample

221205-m5evgage5x
MD5

4801db168afe0ad575eafdd22e291e24
SHA1

e54956803f75bc667f7242a3dc2b7946c785807b
SHA256

4641f107daa5b52f5ca15e0db5ce5c4bacacd7714e2f14792217539dde54a580
SHA512

f41767fa998ee4b5d34693cc9401609b7d26d5e7e5f62b86fb801d9d311a7c9ddd3b4f8aff7c29cbc814bd827baa03bb8d5d4c3fb30724052415a49d201c3698
SSDEEP

6144:j04aS4lnIxyKaKeXZDroScK6x+6NvHzSgdPT0h8t0Tn/oFNxsCcMwY:wNS4OyPKeXdfcK6xVNGQbYW0T/oFNxT

Score

7^/10

Malware Config

Targets

- Target
  
  Packing list ASPL22-23-1504_jpg.vbs
- Size
  
  321KB
- MD5
  
  4801db168afe0ad575eafdd22e291e24
- SHA1
  
  e54956803f75bc667f7242a3dc2b7946c785807b
- SHA256
  
  4641f107daa5b52f5ca15e0db5ce5c4bacacd7714e2f14792217539dde54a580
- SHA512
  
  f41767fa998ee4b5d34693cc9401609b7d26d5e7e5f62b86fb801d9d311a7c9ddd3b4f8aff7c29cbc814bd827baa03bb8d5d4c3fb30724052415a49d201c3698
- SSDEEP
  
  6144:j04aS4lnIxyKaKeXZDroScK6x+6NvHzSgdPT0h8t0Tn/oFNxsCcMwY:wNS4OyPKeXdfcK6xVNGQbYW0T/oFNxT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2