b901e9ee6264fda3dfbe5f3527c3a5bf51a3185c7034fdc9b85c5dd6136b93c1

Resubmissions

24-10-2023 02:22

231024-ctyhbsbg99 1

24-10-2023 02:21

231024-cs56saaa7z 8

24-10-2023 02:20

231024-csghesaa7w 8

24-10-2023 02:11

231024-cmscqsbg57 8

Sharing

Copy URL

Twitter E-mail

General

Target

Вирус.bat
Size

8KB
Sample

231024-cs56saaa7z
MD5

418d1f775abafec5ecb582a39d6bda01
SHA1

d4cd5ee06f74752eb2955fa8d8ed1f1c58652654
SHA256

b901e9ee6264fda3dfbe5f3527c3a5bf51a3185c7034fdc9b85c5dd6136b93c1
SHA512

e3da1d99c2b8d94c569e478124f6b45c64173fa301dcccaa2528580f526667b0bdd3332a9bd8676f8b64a8c373d77475d73da69c4d350e4e0c6bc427f92f05e1
SSDEEP

96:SVrwV2EAV2EK0wQ+cdv7lvQcy2oFQ0ELzNMHNMnX839bLJSqPD06RbhoYEt8H2Zo:z2B2dcdF9PSmylelsccLIbhbK

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  Вирус.bat
- Size
  
  8KB
- MD5
  
  418d1f775abafec5ecb582a39d6bda01
- SHA1
  
  d4cd5ee06f74752eb2955fa8d8ed1f1c58652654
- SHA256
  
  b901e9ee6264fda3dfbe5f3527c3a5bf51a3185c7034fdc9b85c5dd6136b93c1
- SHA512
  
  e3da1d99c2b8d94c569e478124f6b45c64173fa301dcccaa2528580f526667b0bdd3332a9bd8676f8b64a8c373d77475d73da69c4d350e4e0c6bc427f92f05e1
- SSDEEP
  
  96:SVrwV2EAV2EK0wQ+cdv7lvQcy2oFQ0ELzNMHNMnX839bLJSqPD06RbhoYEt8H2Zo:z2B2dcdF9PSmylelsccLIbhbK
Score

8^/10

evasion persistence
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Disables RegEdit via registry modification

Disables Task Manager via registry modification

Checks computer location settings

Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2