Overview

overview

3

Static

static

1

mset9.bat

windows7-x64

1

mset9.bat

windows10-2004-x64

1

mset9.command

ubuntu-18.04-amd64

3

mset9.command

debian-9-armhf

1

mset9.command

debian-9-mips

mset9.command

debian-9-mipsel

mset9.py

ubuntu-18.04-amd64

mset9.py

debian-9-armhf

mset9.py

debian-9-mips

mset9.py

debian-9-mipsel

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/05/2024, 22:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mset9.bat

  • Size

    246B

  • MD5

    c346349f2d5fef432802a447453e3993

  • SHA1

    8a51f4a72c286ee525290e06e4785d24263ff8af

  • SHA256

    617a3788fe6a2a5dada62e0e5b9f128787d559961b5d9459267e7f95f888c47b

  • SHA512

    c4b184d3a38d389f8dceb32cac0d4312b0fe146400a15df9ea3bcf12b9f356126aa966b98887a3bfdfcd92e89d681b229e45173f42a8ae4dbeec6bdadc952bef

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\mset9.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Windows\system32\chcp.com
      chcp 65001
      2⤵
        PID:280

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads