Overview

overview

10

Static

static

1

12 DE SEPT...SM.vbs

windows7-x64

10

12 DE SEPT...SM.vbs

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    12 DE SEPTIEMBRE DE 2023 NOTIFICACION ELECTRONICA RAMA JUDICIAL DEL PODER PUBLICO CLAVE DE ARCHIVO 1209 ESM.vbs

  • Size

    329KB

  • Sample

    231014-dp961afb83

  • MD5

    917719a6c4103007e98335e0f4e4bbc4

  • SHA1

    d5658df0ea80c66cd494bd90c6a3c5259e80c0fe

  • SHA256

    9867f8963759ebea35b1867c1ed5bb32c4bdbf8886b687fde70799b2a464eacb

  • SHA512

    2d0c3c65a79a74b9dad30a7fd93287c7ea9f664fc272abdb74cbf0ef33725fd58d0d0791a57bcc1a30e1b70e2a47e18762f4fb7f13e8a883623d47ae945b3306

  • SSDEEP

    6144:8rLBZ3FKvVuq61WbfC3km0EB5aewPlM5ENNVPyNdW8KXy9KnHKvFcr:8rLBZ3FKvVuq61WbfC3km0EB5aewPlM2

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
ps1.dropper

https://uploaddeimagens.com.br/images/004/563/621/original/universo_vbs.jpeg?1690931855
exe.dropper

https://uploaddeimagens.com.br/images/004/563/621/original/universo_vbs.jpeg?1690931855

Targets

    • Target

      12 DE SEPTIEMBRE DE 2023 NOTIFICACION ELECTRONICA RAMA JUDICIAL DEL PODER PUBLICO CLAVE DE ARCHIVO 1209 ESM.vbs

    • Size

      329KB

    • MD5

      917719a6c4103007e98335e0f4e4bbc4

    • SHA1

      d5658df0ea80c66cd494bd90c6a3c5259e80c0fe

    • SHA256

      9867f8963759ebea35b1867c1ed5bb32c4bdbf8886b687fde70799b2a464eacb

    • SHA512

      2d0c3c65a79a74b9dad30a7fd93287c7ea9f664fc272abdb74cbf0ef33725fd58d0d0791a57bcc1a30e1b70e2a47e18762f4fb7f13e8a883623d47ae945b3306

    • SSDEEP

      6144:8rLBZ3FKvVuq61WbfC3km0EB5aewPlM5ENNVPyNdW8KXy9KnHKvFcr:8rLBZ3FKvVuq61WbfC3km0EB5aewPlM2

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks