eacce5121ddb3922e6234a3210e9e291028d0520e1ceb7e325d3a093917eb228 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Loveware.bat
Size

27KB
Sample

240705-zprkjsxhld
MD5

499c5aa1b21e9029f76bc57de37907ad
SHA1

a2552f2bc1f7d10eb409e864d15065ff1cab94b9
SHA256

eacce5121ddb3922e6234a3210e9e291028d0520e1ceb7e325d3a093917eb228
SHA512

56e9bacfe08f6511ad54c4134f7a051b434e0e3db60a73eebd4d3f12dd29f9f95ed77e54765ec10f4b50894e2ba0ee0de66288c148f1feef9084f61baaa41a50
SSDEEP

384:0omL5IjEZiZryAOENuPuOJsYTQpLuLpDq7QYfLGMV+jasHHLgLxLJsYTgV+L0py/:0nmNu2OJsYTBJcJsYTtz9aF4GC

Score

7^/10

execution

Malware Config

Targets

- Target
  
  Loveware.bat
- Size
  
  27KB
- MD5
  
  499c5aa1b21e9029f76bc57de37907ad
- SHA1
  
  a2552f2bc1f7d10eb409e864d15065ff1cab94b9
- SHA256
  
  eacce5121ddb3922e6234a3210e9e291028d0520e1ceb7e325d3a093917eb228
- SHA512
  
  56e9bacfe08f6511ad54c4134f7a051b434e0e3db60a73eebd4d3f12dd29f9f95ed77e54765ec10f4b50894e2ba0ee0de66288c148f1feef9084f61baaa41a50
- SSDEEP
  
  384:0omL5IjEZiZryAOENuPuOJsYTQpLuLpDq7QYfLGMV+jasHHLgLxLJsYTgV+L0py/:0nmNu2OJsYTBJcJsYTtz9aF4GC
Score

7^/10

execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2