75145be95746fcb54ef093b665cc7dcfb1cdfc7e6455dd271b1326b1543bbe16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

guh.vbs
Size

31KB
Sample

230315-lssecsee7v
MD5

fc718ca491cf06c3a37b16e6b7dd25f4
SHA1

e1eb04381a31a14fc33a5930a0a668fbf887fee8
SHA256

75145be95746fcb54ef093b665cc7dcfb1cdfc7e6455dd271b1326b1543bbe16
SHA512

3f02a6cb0befa3a66693471e82bb2aea295545f5ab1719e3bb6c6c66882adedef590dd128f8cb47fb959e3bfe14c70822bbd6211059c5599e97723cc0d930148
SSDEEP

768:k2s3BQhBVu25YpiqOcGpBA5FXe21oomQdDPgl3nn4kSrbuDtST/aNtMdlrJu6nbX:6OLuu21oomQdcl3n4ke68rjem

Score

7^/10

Malware Config

Targets

- Target
  
  guh.vbs
- Size
  
  31KB
- MD5
  
  fc718ca491cf06c3a37b16e6b7dd25f4
- SHA1
  
  e1eb04381a31a14fc33a5930a0a668fbf887fee8
- SHA256
  
  75145be95746fcb54ef093b665cc7dcfb1cdfc7e6455dd271b1326b1543bbe16
- SHA512
  
  3f02a6cb0befa3a66693471e82bb2aea295545f5ab1719e3bb6c6c66882adedef590dd128f8cb47fb959e3bfe14c70822bbd6211059c5599e97723cc0d930148
- SSDEEP
  
  768:k2s3BQhBVu25YpiqOcGpBA5FXe21oomQdDPgl3nn4kSrbuDtST/aNtMdlrJu6nbX:6OLuu21oomQdcl3n4ke68rjem
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2