4babca7c722f8a15f744e27075ddeb2d541940211bf945031e6cced27f60f4bd | Triage

Sharing

General

Target

Document2090.pdf.vbs
Size

1.8MB
Sample

231012-fsgd7sba94
MD5

b073f7c42bf8b8211e442a15e1d25866
SHA1

056866c4061d69e963ac9c03934653ef68560164
SHA256

4babca7c722f8a15f744e27075ddeb2d541940211bf945031e6cced27f60f4bd
SHA512

7af699db05d9108d29c3dcbe3a4c21ff1320aa4b01936cb4708bfe2df1f36baefeacd0320aa2316d7a00779e31dbcc28b23c8057caa9192ed19411cd3e8ae4f5
SSDEEP

12:lphphphphphphphphphphphphphphphphphphphphphphphphphphphphphphphc:rAqrMJvObI60Ib/+jT

Score

7^/10

Malware Config

Targets

- Target
  
  Document2090.pdf.vbs
- Size
  
  1.8MB
- MD5
  
  b073f7c42bf8b8211e442a15e1d25866
- SHA1
  
  056866c4061d69e963ac9c03934653ef68560164
- SHA256
  
  4babca7c722f8a15f744e27075ddeb2d541940211bf945031e6cced27f60f4bd
- SHA512
  
  7af699db05d9108d29c3dcbe3a4c21ff1320aa4b01936cb4708bfe2df1f36baefeacd0320aa2316d7a00779e31dbcc28b23c8057caa9192ed19411cd3e8ae4f5
- SSDEEP
  
  12:lphphphphphphphphphphphphphphphphphphphphphphphphphphphphphphphc:rAqrMJvObI60Ib/+jT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2