8d6c51a73578c227267b591110fc8db1ff1545d9a2de2f2a9cee94bba5cdccf0 | Triage

Sharing

General

Target

bee7f9fbfa5bec77136bf92aa513f417.zip
Size

184KB
Sample

240306-xfr4lsgd8y
MD5

bee7f9fbfa5bec77136bf92aa513f417
SHA1

701918988ff1c53f7ac44d32dbfb31695b2309c2
SHA256

8d6c51a73578c227267b591110fc8db1ff1545d9a2de2f2a9cee94bba5cdccf0
SHA512

e460788e48e76d5f0da83a7a2c87ad199b877f4d2b269c9441803c0352cc3e786cb62b82856afc549ae6abb4236889a210bfb00c5525ea4d057a50fd6a4f7284
SSDEEP

3072:Yrta4CqFgSG1sZjp7jVqvAm6K49bsjfEwGijPSjbrlsMalHIdhA8P6FIO:YBa62ShlcUbs50YofA8yFIO

Score

7^/10

Malware Config

Targets

- Target
  
  Nb.bat
- Size
  
  3KB
- MD5
  
  139bd7cc2c46df45cc1271a82d009bf7
- SHA1
  
  f722b419801b8f9fbd220d92c57691bc925ff307
- SHA256
  
  33d3e0ec7bfb73d25231cb7aefa5d9ff7590b7e5c17debca80bb6ef0e9228c5b
- SHA512
  
  4f092803a21cec2b7a4869101a452e94f79cd03be29db48309f9be30642fff8032cb692cd6841d5e9ecca7a61d431c9e750698cebcb99edbf4e827e779117f25
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  run.ps1
- Size
  
  1KB
- MD5
  
  7d2d201c5aeb28d3a64360e38be70355
- SHA1
  
  486901dae459c30fe427f68e318b292a402cc18e
- SHA256
  
  0029be421ce54a523a3b9f04f0e682e2766b152c1ca32a1bdde9c4bfe7ad0d18
- SHA512
  
  cec297c8ba04ae3cae4bc29ebfe95032c67459e4c17792e8ed83d9003323111507bba22b5997b1a6cb5d111c30db4bfc55af509a9d42d3f10672370081b34182
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4