Overview

overview

10

Static

static

3

Run-AU3-1.bat

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Malware-3.zip

  • Size

    5.2MB

  • Sample

    240203-sb6nzseddp

  • MD5

    24f8b00027f74d8b60e4a2a72dff59cd

  • SHA1

    54a0611629e2f2b61cd36481c41b78eedbe4f75c

  • SHA256

    8fecd5fd4582dd79bf440c06bde8d5f80069591e5c88e8f55c75bfe0a77d8a07

  • SHA512

    b07423dfc0c0a02fe48bf9086171d6b4d714694c418000730582cfb39846f6e93f67ab3cf1850fd95d2982f460a6512b7228b7c172b0654da086348e7a17308d

  • SSDEEP

    98304:r1aZl8uTJnBGI12iUPGB8ah9k2D2AjtBncbSN6bCRJzP19Nf4WCWGm+j:kZlHTeUkDahR5BnqzG1sdmA

Score
10/10

Malware Config

Targets

    • Target

      Run-AU3-1.bat

    • Size

      102B

    • MD5

      370b7b724e020a745c6c86bc0ba7a593

    • SHA1

      65c87bcfc95beb94b41ad3c3348d5a51b3136b6f

    • SHA256

      83ac38730f94c852375164efcefb26900cf7e20ba6118da3d6b11d53d2774fbf

    • SHA512

      eaf01ebc34142e7272d4d10020b9fc955ab0fe65c7f33f38a7830ae14b61733a5abc0126426b5e7ddccc883ad6b77bdb4c48218dbefe9283c63e8c22676a785b

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks