51c5cbc4f9e7ffd7eccd777ce55895c173863e971d78ef413ddb4d05828026d6 | Triage

Sharing

General

Target

31231314650028122.bat
Size

12KB
Sample

240720-v4l66avbjb
MD5

6eceb7bcb0f85ba42c310283d9acb20b
SHA1

cc473f44a249e836d7b2e873986a4d28cdcd7f63
SHA256

51c5cbc4f9e7ffd7eccd777ce55895c173863e971d78ef413ddb4d05828026d6
SHA512

85935c2cd03fa1bb5979ed210d7accabe9577c5202c867ff94859a5b668496a7da417d5a89c5223f1b3acf9cedbe23a5fd5f14107eb6b5dbb402eadfbf65ced9
SSDEEP

384:jwUiaJy6uUvv3uz53ZUzO0UL+vc+z5MH4axIisey1ocXiHE1:kUjJy6uUn3uz53ZUzO09N64aZsH1

Score

8^/10

execution

Malware Config

Targets

- Target
  
  31231314650028122.bat
- Size
  
  12KB
- MD5
  
  6eceb7bcb0f85ba42c310283d9acb20b
- SHA1
  
  cc473f44a249e836d7b2e873986a4d28cdcd7f63
- SHA256
  
  51c5cbc4f9e7ffd7eccd777ce55895c173863e971d78ef413ddb4d05828026d6
- SHA512
  
  85935c2cd03fa1bb5979ed210d7accabe9577c5202c867ff94859a5b668496a7da417d5a89c5223f1b3acf9cedbe23a5fd5f14107eb6b5dbb402eadfbf65ced9
- SSDEEP
  
  384:jwUiaJy6uUvv3uz53ZUzO0UL+vc+z5MH4axIisey1ocXiHE1:kUjJy6uUn3uz53ZUzO09N64aZsH1
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2