b765f7e767a322628113be3b2e557c12bb9f22998e2830ad0fe450f518705c86 | Triage

Sharing

General

Target

PassKey.txt.lnk
Size

2KB
Sample

230519-vdc6kaeg66
MD5

9feef41c6aa4b71a382bbc9133f003d9
SHA1

345bb81edbe9e5d5e8de2529aa37f47f1865f085
SHA256

b765f7e767a322628113be3b2e557c12bb9f22998e2830ad0fe450f518705c86
SHA512

f354cd4cd491f2189ec3dd1d3b5cab046a2c9f85d0164e6af5fb886b83ad72c49b055a7ffbc90e3633748b31e1073e23d6e7551b9ef564dbae6bbb1418477345

Score

10^/10

Malware Config

Extracted

Language

hta

Source

URLs

hta.dropper

https://internal.j-ic.co/fcaXnn8DBmZ/RjbZ5DBcjZ/vNz31jEJER/xYBfGR5XFn/_E%3D

Targets

- Target
  
  PassKey.txt.lnk
- Size
  
  2KB
- MD5
  
  9feef41c6aa4b71a382bbc9133f003d9
- SHA1
  
  345bb81edbe9e5d5e8de2529aa37f47f1865f085
- SHA256
  
  b765f7e767a322628113be3b2e557c12bb9f22998e2830ad0fe450f518705c86
- SHA512
  
  f354cd4cd491f2189ec3dd1d3b5cab046a2c9f85d0164e6af5fb886b83ad72c49b055a7ffbc90e3633748b31e1073e23d6e7551b9ef564dbae6bbb1418477345
Score

10^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1