7897cd357f4f48222fe5e61b1de655356325f9313b7652f8b789c87ca5c35bc8 | Triage

Submit
Reports

Overview

overview

Static

static

1

58fd3b9b-3...6.html

windows10-2004-x64

Resubmissions

19/03/2023, 16:57

230319-vgm5yabc91 10

19/03/2023, 16:35

230319-t3nsxsbc5t 1

Sharing

Copy URL Twitter E-mail

General

Target

58fd3b9b-3c2c-4df5-9886-06c56be19556.html
Size

70KB
Sample

230319-vgm5yabc91
MD5

188aa1c2b4d698cdd16c147aeabf3b21
SHA1

2d284df8097493add4018e5fbaf36683358dec3b
SHA256

7897cd357f4f48222fe5e61b1de655356325f9313b7652f8b789c87ca5c35bc8
SHA512

f69a910f131c45dbf42787b097f11ca03001387368196d07b8915cc5a04355d07f280f3dd4c17349585f5410847723178a0c87f5afaa530f0a28197b18063ae6
SSDEEP

1536:3gboqjhtQNlNJa2UdOll3tvreyxeclJnTXpwe66H1pa0feMAAFNJ:w8qjhiDasl3VeyfKeXH1gW

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

58fd3b9b-3c2c-4df5-9886-06c56be19556.html

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

ps1.dropper

http://aproshak.top/gatef1.php

Targets

- Target
  
  58fd3b9b-3c2c-4df5-9886-06c56be19556.html
- Size
  
  70KB
- MD5
  
  188aa1c2b4d698cdd16c147aeabf3b21
- SHA1
  
  2d284df8097493add4018e5fbaf36683358dec3b
- SHA256
  
  7897cd357f4f48222fe5e61b1de655356325f9313b7652f8b789c87ca5c35bc8
- SHA512
  
  f69a910f131c45dbf42787b097f11ca03001387368196d07b8915cc5a04355d07f280f3dd4c17349585f5410847723178a0c87f5afaa530f0a28197b18063ae6
- SSDEEP
  
  1536:3gboqjhtQNlNJa2UdOll3tvreyxeclJnTXpwe66H1pa0feMAAFNJ:w8qjhiDasl3VeyfKeXH1gW
Score

10^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy