Overview

overview

10

Static

static

10

ApokalypseX.bat

windows10-2004-x64

10

ApokalypseX.bat

windows11-21h2-x64

10

Resubmissions

17/05/2024, 18:48

240517-xf6l1add77 10

17/05/2024, 08:41

240517-klghvahh3x 10

17/05/2024, 08:39

240517-kkggfsab38 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ApokalypseX.bat

  • Size

    11KB

  • MD5

    e4adc86d9f409d319c672d7d5384a04e

  • SHA1

    b61144e94b18919b99b3621446a4f85c8838c707

  • SHA256

    f35b98999496548741f902a7fa25795bcadb43d7839c2acfbfc48c53be4a3be9

  • SHA512

    189cd4ac752e2c87209a7a140278195d4a166ecc3d73befa7f91681b393873ea6b4cb4d15766ff3c5fabfeea0d21724c6e75b39c68abfde18c346ee9f2e76395

  • SSDEEP

    192:zxR/b5lT2hCaRWzWXCaRWzWgMoUWqe71uQNVyRhb+/yB3fZlo0o/hr+pMnKFYjQS:dRnqhCD6XCD6gMOuCVyRhb+/yB3fZejb

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Checks for this command that runs a batch skript as administrator: net session >nul 2>&1 || (powershell start -verb runas '"%~0"' &exit /b) 1 IoCs

    The Command is used in malicious skripts to make shure they are run as Administrator.

Files

  • ApokalypseX.bat
    .bat .vbs