General
-
Target
88426550348524148.bat
-
Size
20KB
-
Sample
240720-vpnfnswbrj
-
MD5
6253bc5804b8f0285c15ba037a1a43e5
-
SHA1
0580814e38ab369075789c11baba481e857373cc
-
SHA256
cd85e28a22eace3fcd86a7a66a694ab3c457cdcdc9422a5b924e3bdcea3d874b
-
SHA512
a10dda06ba363948aac5a468776cc65441d70f9f5e0fead846cdef5b901040cf9d0b206fb35e69cbd40fb0ef1e437dac36e2d0665a48d9496327b4a320526486
-
SSDEEP
384:p0IVUvUqPUJkvYsVSajlus2H5PvgVNv62xy+mNoG6da6CYNQpnZ/gBwD+dE:pLYUqPsYVxjgJNv893xHSoRdpJNwZ4yx
Malware Config
Targets
-
-
Target
88426550348524148.bat
-
Size
20KB
-
MD5
6253bc5804b8f0285c15ba037a1a43e5
-
SHA1
0580814e38ab369075789c11baba481e857373cc
-
SHA256
cd85e28a22eace3fcd86a7a66a694ab3c457cdcdc9422a5b924e3bdcea3d874b
-
SHA512
a10dda06ba363948aac5a468776cc65441d70f9f5e0fead846cdef5b901040cf9d0b206fb35e69cbd40fb0ef1e437dac36e2d0665a48d9496327b4a320526486
-
SSDEEP
384:p0IVUvUqPUJkvYsVSajlus2H5PvgVNv62xy+mNoG6da6CYNQpnZ/gBwD+dE:pLYUqPsYVxjgJNv893xHSoRdpJNwZ4yx
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell and hide display window.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-