Overview

overview

8

Static

static

1

5e13d1b252...56.bat

windows7-x64

8

5e13d1b252...56.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bdf3d064c172015f3f49bbabc00c7e4a.bin

  • Size

    6KB

  • Sample

    240719-dzhvhazhnl

  • MD5

    54ff39996f128e10e592bf81775c1a9c

  • SHA1

    374d0340f3c6c9586adbc87b93394d79f2c74787

  • SHA256

    994476ed1bb4202c4efb908e8c8d57d6be3837b76c4a7287d4d537c63907a038

  • SHA512

    ab5a0fbac2ad7d0e3ac0e7f65aa46b8f098995b7ef5b6ea31e630ed1fe5e6ef92264db21f1c21e66e651bb9ecabde4de886c98bd914f13445833ed7d40ef2bc7

  • SSDEEP

    192:PY5BzSfxOZktvNPm/GtGGV847F/BWzd1dpUEsr:8EO2tvNyGxRF/BWzTUEsr

Score
8/10
execution

Malware Config

Targets

    • Target

      5e13d1b252311c680b84c1c87c7487bf7724609c9bf572b72db0a49168dbf156.bat

    • Size

      15KB

    • MD5

      bdf3d064c172015f3f49bbabc00c7e4a

    • SHA1

      3261d02778ef25bd8a3067f25d0c9f103100bcbe

    • SHA256

      5e13d1b252311c680b84c1c87c7487bf7724609c9bf572b72db0a49168dbf156

    • SHA512

      85a93a7fcdc0eb60ad360dc8c248c3aef6cbad3919933068e414276de1a60cf0cf842ca7b4514bb53e3aa0c027e8dd7becdad0698c03d53635459059411031af

    • SSDEEP

      384:BdQT+1v7GWrOQcqT+PTFWvgiD8AhRqdia4nIk1dtt7ttqjEFPx7s01f:bz1FfqUPDGGhXFZ401f

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks