18b9fbc870d8ad4436dc177d00d67df1f71ceab03d558b53b6c8c7309c66b884 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

woork.bat

windows7-x64

7

woork.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

woork.bat
Size

408B
Sample

230314-wgxvtagh56
MD5

d0c0cdc0fb8e18cec319416c4e45b142
SHA1

d9a9e5614e1fb05cafd7144893237b242a8d1a5f
SHA256

18b9fbc870d8ad4436dc177d00d67df1f71ceab03d558b53b6c8c7309c66b884
SHA512

e69f6b96f9a11a8d77dac1cd5ab1c7deb7a223b33cd085a321c4023bfaa7fb718022243e034d4580b55cf28d045a9b1262ceadf7a1e44e5ea364bdeab367ac3c

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

woork.bat

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

woork.bat

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  woork.bat
- Size
  
  408B
- MD5
  
  d0c0cdc0fb8e18cec319416c4e45b142
- SHA1
  
  d9a9e5614e1fb05cafd7144893237b242a8d1a5f
- SHA256
  
  18b9fbc870d8ad4436dc177d00d67df1f71ceab03d558b53b6c8c7309c66b884
- SHA512
  
  e69f6b96f9a11a8d77dac1cd5ab1c7deb7a223b33cd085a321c4023bfaa7fb718022243e034d4580b55cf28d045a9b1262ceadf7a1e44e5ea364bdeab367ac3c
Score

8^/10
- Blocklisted process makes network request
- Drops startup file
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy