4104235256d918fefca7e20168f6bd26c9901631f1e9bb1f896e6513af38fb22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cnf13429226.vbs
Size

341KB
Sample

230210-mznkescd49
MD5

e3404b5c903f20daaf32e5cad03bc568
SHA1

0e506b7aa2d46a5f38453a7b0f283d72fdcb7744
SHA256

4104235256d918fefca7e20168f6bd26c9901631f1e9bb1f896e6513af38fb22
SHA512

fda27fd36ef544524aabb2f3e40bc49c8c967b9e7daaff90a07d082aeadeb2a0d83c322d99474ae51b3bff0a0660ba9b752749f73bb523968f52d2b4929b9ee7
SSDEEP

6144:/r0j2zZwVKzjxvqTQW97yDhvMmNjYzALGLKQXfVp5B/qfuPQMYFVkCu:/eIZkKdqcgyD1MmazALGmYVU1Tu

Score

7^/10

Malware Config

Targets

- Target
  
  cnf13429226.vbs
- Size
  
  341KB
- MD5
  
  e3404b5c903f20daaf32e5cad03bc568
- SHA1
  
  0e506b7aa2d46a5f38453a7b0f283d72fdcb7744
- SHA256
  
  4104235256d918fefca7e20168f6bd26c9901631f1e9bb1f896e6513af38fb22
- SHA512
  
  fda27fd36ef544524aabb2f3e40bc49c8c967b9e7daaff90a07d082aeadeb2a0d83c322d99474ae51b3bff0a0660ba9b752749f73bb523968f52d2b4929b9ee7
- SSDEEP
  
  6144:/r0j2zZwVKzjxvqTQW97yDhvMmNjYzALGLKQXfVp5B/qfuPQMYFVkCu:/eIZkKdqcgyD1MmazALGmYVU1Tu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2