c751236e177cfa22f7cced95254cd9ecb9580d5773d9facc6780bbee89e024b4 | Triage

Sharing

General

Target

250332464164244314.bat
Size

10KB
Sample

240720-xd894svhrb
MD5

ba3c099309a5f7264ebd588f9066af05
SHA1

2abdb384561f35f695454487ef85a9dd8569a726
SHA256

c751236e177cfa22f7cced95254cd9ecb9580d5773d9facc6780bbee89e024b4
SHA512

47a68c6e66fc4ada00a274d41e3cf2e2361b33dfb48c1be77c3167e422dc5d4f5a24bc0796f94a7e8537b9700cd9e3dfd404091a418331501d8fc84b5971d3a2
SSDEEP

96:dJ4FTaxO3/DoHcHt5z24panZMwECVSmEpCqLV2VBOZLYRRcgGxe682oYNTpeaQ6S:ziTrX7p5ISrcVBOZiRcuJdKYliu2Mzn7

Score

8^/10

execution

Malware Config

Targets

- Target
  
  250332464164244314.bat
- Size
  
  10KB
- MD5
  
  ba3c099309a5f7264ebd588f9066af05
- SHA1
  
  2abdb384561f35f695454487ef85a9dd8569a726
- SHA256
  
  c751236e177cfa22f7cced95254cd9ecb9580d5773d9facc6780bbee89e024b4
- SHA512
  
  47a68c6e66fc4ada00a274d41e3cf2e2361b33dfb48c1be77c3167e422dc5d4f5a24bc0796f94a7e8537b9700cd9e3dfd404091a418331501d8fc84b5971d3a2
- SSDEEP
  
  96:dJ4FTaxO3/DoHcHt5z24panZMwECVSmEpCqLV2VBOZLYRRcgGxe682oYNTpeaQ6S:ziTrX7p5ISrcVBOZiRcuJdKYliu2Mzn7
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2