Overview

overview

8

Static

static

1

3331468823...70.bat

windows7-x64

8

3331468823...70.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    333146882317618270.bat

  • Size

    15KB

  • Sample

    240719-tfcr5syfkm

  • MD5

    3ce90f296aa782d390a934fa4a1c0cc9

  • SHA1

    c2db88c3a4d2731327ff632d63f2c5d85dbce377

  • SHA256

    539737db590979dcb212bd39b147c91aabf1240bbcaf95662a2c2b4c6870db13

  • SHA512

    552bba9bd378be013a68acf606b3a5fc78b369994dfbb0b0ba547b2860775a3eb7c6be7d948ccbc9e05865a3f790c0d492a65b7ff868dddeef247dbeb5b0332e

  • SSDEEP

    384:rRTfPtLgROLL1hDFBPF3+ub4BXnX0BPN3b3p:lTfPtk4L1hDFLPu0PVp

Score
8/10
execution

Malware Config

Targets

    • Target

      333146882317618270.bat

    • Size

      15KB

    • MD5

      3ce90f296aa782d390a934fa4a1c0cc9

    • SHA1

      c2db88c3a4d2731327ff632d63f2c5d85dbce377

    • SHA256

      539737db590979dcb212bd39b147c91aabf1240bbcaf95662a2c2b4c6870db13

    • SHA512

      552bba9bd378be013a68acf606b3a5fc78b369994dfbb0b0ba547b2860775a3eb7c6be7d948ccbc9e05865a3f790c0d492a65b7ff868dddeef247dbeb5b0332e

    • SSDEEP

      384:rRTfPtLgROLL1hDFBPF3+ub4BXnX0BPN3b3p:lTfPtk4L1hDFLPu0PVp

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks