Overview

overview

8

Static

static

0098593024...22.cmd

windows7-x64

8

0098593024...22.cmd

windows10-2004-x64

8

0098593024...22.lnk

windows7-x64

3

0098593024...22.lnk

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    00985930245.zip

  • Size

    1002B

  • Sample

    221221-p1by5acc59

  • MD5

    8e824b9c73fc95d05ddc8a7719590fdb

  • SHA1

    77d387839242f40210db41e34de9a946b8638c57

  • SHA256

    7db115f80a9ddf76b48ba1706f2bb76bd100dbbef411ebaaca87a1a1f9bd18ed

  • SHA512

    16ba90ee29fbc2db122854499c72168b403e63f52141f17fc46efc08a0c33176227a8b264db899a9e1a07f8294c3ef22bf3ea10648210ef79b7aefaff6262827

Score
8/10

Malware Config

Targets

    • Target

      00985930245049.355546.92022.cmd

    • Size

      327B

    • MD5

      7c9669d84a1ee24015d937add5ab5ce5

    • SHA1

      8714f27189a99c742c257b5ffad4b415adb37cd7

    • SHA256

      12473780d38bebef153e53a6a0831733f094ed8e5cfc103f1770ec5c973e0de3

    • SHA512

      239f442320df9be5935280ac7962c9b52def031d151672a31019c5b6a5596008f49da847a5295acd28c547293ae6f6fdbad62010f938faa0e1a647197c27aba3

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

    • Target

      00985930245049.355546.92022.lNk

    • Size

      503B

    • MD5

      4a9c511cf3989adc5820361c57818b27

    • SHA1

      c40d531a8a36363df8e0ebaf542b8d6a4817ed08

    • SHA256

      b90dfbf6d8320d032b5844b7952caa49c78b854f5fc59162bf058844bc95a01b

    • SHA512

      01de79f7ef221f373a2001ba5cb34838ce7ed75f5eb62643cbf191b9579074c693f7d098ce67ed984e7753e769209987bd11717fb057bc84f948b5c63f54d017

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks