Overview

overview

8

Static

static

1

076b21b59c...ff.bat

windows7-x64

8

076b21b59c...ff.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c8e8886988881049d31db0b2fd33ed2.bin

  • Size

    6KB

  • Sample

    240720-bllm5atbkb

  • MD5

    2fe7e1cc5068339a72c3bf4e2dc08c1d

  • SHA1

    6231c728d1295f2ac497862de34b224a176001bf

  • SHA256

    813e4d662e2e81d622e096f6c7072ea78b9bcb7068e5569196a24adb25c8e9be

  • SHA512

    33cc05c414974911f85c603e49e64c5b6f412bb5d2079a5f9f5dc28dad812f257647680d5a38509d19d1da231353dc064460c948323f0995d74a0c0dc0f6d342

  • SSDEEP

    192:ZjKRClsDBNLQQPzplwaaKN/EQaRmtFCWM97kmON:ZjEmsFKQLp2aLNsNRmt8lkmON

Score
8/10
execution

Malware Config

Targets

    • Target

      076b21b59cd2b62d4ba61b81730361f607d2bfc910c3630e3b11d1a9bfb367ff.bat

    • Size

      15KB

    • MD5

      3c8e8886988881049d31db0b2fd33ed2

    • SHA1

      48be12de1f0d441c6b8c0015aac6ba896487d8e5

    • SHA256

      076b21b59cd2b62d4ba61b81730361f607d2bfc910c3630e3b11d1a9bfb367ff

    • SHA512

      91e99d8d5554217ed7721a495653b62afcf8ef596ac08ce149f6894ae0934e8f3e0597dad18b4f7ceee9bf043a27809d0658ee71327dbdb9bc545daceb295ad0

    • SSDEEP

      384:ShcOe0gxt7RINaqoVSf+L06h+npdNYtPRA:ShcO+XRIcqiSmLzhOpPYtPG

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks