Overview

overview

7

Static

static

belugacat.cmd

windows10-1703-x64

7

belugacat.cmd

windows7-x64

3

belugacat.cmd

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    belugacat.cmd

  • Size

    532B

  • Sample

    221222-ffzp1sdh52

  • MD5

    0e9fb83e2b043a0d8b22ea842f2a2c72

  • SHA1

    ed2fc85ad78a5c5fca5c3fc3a0e5d05823c55865

  • SHA256

    0c76034f73231317a04b56802dd04ff479023f64d634951fcd13e2b83e2f16fe

  • SHA512

    9f9862bfb8062bc54d73192aabc3c06f33cbf4046d03f282741f840be32dec8379b5f6693d9deab69a5f524a3ed0a6c49ac42248509267a7958ea3bc78337040

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      belugacat.cmd

    • Size

      532B

    • MD5

      0e9fb83e2b043a0d8b22ea842f2a2c72

    • SHA1

      ed2fc85ad78a5c5fca5c3fc3a0e5d05823c55865

    • SHA256

      0c76034f73231317a04b56802dd04ff479023f64d634951fcd13e2b83e2f16fe

    • SHA512

      9f9862bfb8062bc54d73192aabc3c06f33cbf4046d03f282741f840be32dec8379b5f6693d9deab69a5f524a3ed0a6c49ac42248509267a7958ea3bc78337040

    Score
    7/10
    spywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v6

Tasks