854175b18018a759959f538a6d49c8ac7ec63bc5161e89746bd348c6f5ef02d0 | Triage

Sharing

General

Target

e.bat
Size

814B
Sample

240314-x3yvnscg6x
MD5

b4ee5b6a1c93343d38ed9a46be6cf8bf
SHA1

84d959256fb63560114ebac36ecb46d3058fd35d
SHA256

854175b18018a759959f538a6d49c8ac7ec63bc5161e89746bd348c6f5ef02d0
SHA512

729f09e2e432f004d0fbf9a61e6b5deea46cea236aec885fd8a6d592bd46c022c5095b4b8de87e1113849e27bb2a09c31764313300552bd4d7728f9e95de8c2b

Score

6^/10

Malware Config

Targets

- Target
  
  e.bat
- Size
  
  814B
- MD5
  
  b4ee5b6a1c93343d38ed9a46be6cf8bf
- SHA1
  
  84d959256fb63560114ebac36ecb46d3058fd35d
- SHA256
  
  854175b18018a759959f538a6d49c8ac7ec63bc5161e89746bd348c6f5ef02d0
- SHA512
  
  729f09e2e432f004d0fbf9a61e6b5deea46cea236aec885fd8a6d592bd46c022c5095b4b8de87e1113849e27bb2a09c31764313300552bd4d7728f9e95de8c2b
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2