be8b4a9fdb356bbf905f2d413ca1d36a240590f01ebed9375baf5c5ac6e784cd | Triage

Sharing

General

Target

justificante transferencia.vbs
Size

19KB
Sample

231014-ed4qhsgh35
MD5

ecef25d68b3185a2a7cfc8b1c733cca6
SHA1

4719776abb4c758373d820fb1b0c2f48262b853e
SHA256

be8b4a9fdb356bbf905f2d413ca1d36a240590f01ebed9375baf5c5ac6e784cd
SHA512

6d10906095af65bc3f8bb6b2e077a6a80f69329ce07aabe89dbaa55e89b7f1a335e166f4582eceedf51f242d29e0f7b911fd505e2f900ec520908ca9a58941c3
SSDEEP

384:1wMFW3zVm6UOIWIc1QGUmuFS5hTV4NyDgy/m6zEM1+hRF2o:1wLU81qHATVYy2D

Score

7^/10

Malware Config

Targets

- Target
  
  justificante transferencia.vbs
- Size
  
  19KB
- MD5
  
  ecef25d68b3185a2a7cfc8b1c733cca6
- SHA1
  
  4719776abb4c758373d820fb1b0c2f48262b853e
- SHA256
  
  be8b4a9fdb356bbf905f2d413ca1d36a240590f01ebed9375baf5c5ac6e784cd
- SHA512
  
  6d10906095af65bc3f8bb6b2e077a6a80f69329ce07aabe89dbaa55e89b7f1a335e166f4582eceedf51f242d29e0f7b911fd505e2f900ec520908ca9a58941c3
- SSDEEP
  
  384:1wMFW3zVm6UOIWIc1QGUmuFS5hTV4NyDgy/m6zEM1+hRF2o:1wLU81qHATVYy2D
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2