General
-
Target
23768279092265616252.bat
-
Size
12KB
-
Sample
240720-yav4raxgpj
-
MD5
dff176eeae5a3d95aa04c3fa87901a72
-
SHA1
4db6c5677e9898a2a7a5d63b98c9c7fc23dd1000
-
SHA256
fd27a376306364675f381695b87292ae264aa130ff693a765fd8e02cc36af135
-
SHA512
5d0a8315d67021ad90b31923575ae8ced7dd16d04b5fce9330813938940427e0ff6ec70c599ec0b6cc00accb55b2026cf8d82ee217ce3837ee989caf54f7784b
-
SSDEEP
192:Jf2Rkitr42D9hL9h+kpEE95VaKsNUbcy43KEDjbmLgvoNNzpMiF/kQozLut:JMkArT9j8KsNUbcyA/Kkw3pR1oet
Malware Config
Targets
-
-
Target
23768279092265616252.bat
-
Size
12KB
-
MD5
dff176eeae5a3d95aa04c3fa87901a72
-
SHA1
4db6c5677e9898a2a7a5d63b98c9c7fc23dd1000
-
SHA256
fd27a376306364675f381695b87292ae264aa130ff693a765fd8e02cc36af135
-
SHA512
5d0a8315d67021ad90b31923575ae8ced7dd16d04b5fce9330813938940427e0ff6ec70c599ec0b6cc00accb55b2026cf8d82ee217ce3837ee989caf54f7784b
-
SSDEEP
192:Jf2Rkitr42D9hL9h+kpEE95VaKsNUbcy43KEDjbmLgvoNNzpMiF/kQozLut:JMkArT9j8KsNUbcyA/Kkw3pR1oet
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell and hide display window.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-