General

  • Target

    e3b2d94d93d3e1def4309873e0046a5e0458d78ded1043f24f72b68fb73221b2.bat

  • Size

    1KB

  • Sample

    240613-chjvss1ajd

  • MD5

    72e662a219cdfab94267406aff467b53

  • SHA1

    4bd68801244f9ca043936dc69187192d32a1e92e

  • SHA256

    e3b2d94d93d3e1def4309873e0046a5e0458d78ded1043f24f72b68fb73221b2

  • SHA512

    4045f570e16e718af6879b18862666d7771275667119bff0b8cd79cffb618b53fcf0c97120aa9a18eb939f1695fcccf5756c7d423ca70ecf6a0ba857802cfbb9

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

https://carefree-sacmon.s3.us-west-2.amazonaws.com/jre.zip

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

https://mbycket45344.s3.eu-north-1.amazonaws.com/sori-obf.jar

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

https://mbycket45344.s3.eu-north-1.amazonaws.com/rama.jar

Targets

    • Target

      e3b2d94d93d3e1def4309873e0046a5e0458d78ded1043f24f72b68fb73221b2.bat

    • Size

      1KB

    • MD5

      72e662a219cdfab94267406aff467b53

    • SHA1

      4bd68801244f9ca043936dc69187192d32a1e92e

    • SHA256

      e3b2d94d93d3e1def4309873e0046a5e0458d78ded1043f24f72b68fb73221b2

    • SHA512

      4045f570e16e718af6879b18862666d7771275667119bff0b8cd79cffb618b53fcf0c97120aa9a18eb939f1695fcccf5756c7d423ca70ecf6a0ba857802cfbb9

    Score
    10/10
    • Blocklisted process makes network request

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks