f590b5d9c60f27f88ee136632a4b34d037ff271dc55275b4cff859bd48eb06f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Fwd_USPS_Expected_Delivery_on_Monday_20231111.bat
Size

235KB
Sample

230522-y3janacd63
MD5

fb5791ff7ad2148b8df7a4e351e46842
SHA1

55b68f7462e2c034ad3220b1096578c9a8697a34
SHA256

f590b5d9c60f27f88ee136632a4b34d037ff271dc55275b4cff859bd48eb06f2
SHA512

8f42f02f8c09c35f491b62ed30e26ae413c9a9c2e20d473bb8d8724f1446f95a62a1e91d77e7d0abfd0053f9fa26f2080bfbf9df5123f81f5768c543c9b8a790
SSDEEP

3072:oE7glwQ922cFBB5HM5cez7osBGlCipzFqVlk3tIexSnj+wVC1UbweKeWDZmTrr/M:nglwK22KBBIceQsBGysxxcgXZwrr5MZX

Score

7^/10

Malware Config

Targets

- Target
  
  Fwd_USPS_Expected_Delivery_on_Monday_20231111.bat
- Size
  
  235KB
- MD5
  
  fb5791ff7ad2148b8df7a4e351e46842
- SHA1
  
  55b68f7462e2c034ad3220b1096578c9a8697a34
- SHA256
  
  f590b5d9c60f27f88ee136632a4b34d037ff271dc55275b4cff859bd48eb06f2
- SHA512
  
  8f42f02f8c09c35f491b62ed30e26ae413c9a9c2e20d473bb8d8724f1446f95a62a1e91d77e7d0abfd0053f9fa26f2080bfbf9df5123f81f5768c543c9b8a790
- SSDEEP
  
  3072:oE7glwQ922cFBB5HM5cez7osBGlCipzFqVlk3tIexSnj+wVC1UbweKeWDZmTrr/M:nglwK22KBBIceQsBGysxxcgXZwrr5MZX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2