5235a5768da841963871f1806ea97f0ef5c604be4ffa7a5b816686ddb3b67d59 | Triage

Submit
Reports

Overview

overview

Static

static

1

f10b8ba8-a...8.html

windows10-2004-x64

Resubmissions

19/03/2023, 17:42

230319-v91azahd52 10

19/03/2023, 17:34

230319-v5f2jabe4t 1

Sharing

General

Target

f10b8ba8-a85a-4ce9-90be-3e390d737648.html
Size

72KB
Sample

230319-v91azahd52
MD5

3768da1b9d30395a9badae6e80f9e602
SHA1

bc9d620da93890805865cff1da2aa689400cfc44
SHA256

5235a5768da841963871f1806ea97f0ef5c604be4ffa7a5b816686ddb3b67d59
SHA512

0db3d1c79f99b562336dfcc9886315741b67bbde922db25e216a43aa1ab6e52f720a5471ec1b9d841e8150e0a752c5c9d3d03c1410761c24e95199691f534d2e
SSDEEP

1536:xVhHmhtQNlNJa2UdOll3tvreyxeclJnTXpwe66H1pa0feMAAFNJ:fAhiDasl3VeyfKeXH1gW

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

f10b8ba8-a85a-4ce9-90be-3e390d737648.html

Resource

win10v2004-20230220-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

ps1.dropper

http://momidor.top/gatef1.php

Targets

- Target
  
  f10b8ba8-a85a-4ce9-90be-3e390d737648.html
- Size
  
  72KB
- MD5
  
  3768da1b9d30395a9badae6e80f9e602
- SHA1
  
  bc9d620da93890805865cff1da2aa689400cfc44
- SHA256
  
  5235a5768da841963871f1806ea97f0ef5c604be4ffa7a5b816686ddb3b67d59
- SHA512
  
  0db3d1c79f99b562336dfcc9886315741b67bbde922db25e216a43aa1ab6e52f720a5471ec1b9d841e8150e0a752c5c9d3d03c1410761c24e95199691f534d2e
- SSDEEP
  
  1536:xVhHmhtQNlNJa2UdOll3tvreyxeclJnTXpwe66H1pa0feMAAFNJ:fAhiDasl3VeyfKeXH1gW
Score

10^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy