Overview

overview

8

Static

static

1

3084321949...90.bat

windows7-x64

8

3084321949...90.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    308432194994626590.bat

  • Size

    19KB

  • Sample

    240721-1aw26axgjl

  • MD5

    d1a43f23292c60c36090700a5fa4b232

  • SHA1

    66dd4516090bb2b76d2d3d7202dea6ec254817d9

  • SHA256

    0b45968246680255c216ba334257767dbc8863877cc807c9e24d114a82bde529

  • SHA512

    06a27a778290849886bf5bcdd2f76a75f04398ee18c416caad8b6c536293b69f7a4fc1b708856529243505e02555ab6d7a9ab8f878015559984e00596e2d0138

  • SSDEEP

    384:y1ovH+Vav5XMKDWMMA/juWz0tYUkwuaaFxXGvTgjcgj:Ko/1v5xvr/h0tYUk3FW0jNj

Score
8/10
execution

Malware Config

Targets

    • Target

      308432194994626590.bat

    • Size

      19KB

    • MD5

      d1a43f23292c60c36090700a5fa4b232

    • SHA1

      66dd4516090bb2b76d2d3d7202dea6ec254817d9

    • SHA256

      0b45968246680255c216ba334257767dbc8863877cc807c9e24d114a82bde529

    • SHA512

      06a27a778290849886bf5bcdd2f76a75f04398ee18c416caad8b6c536293b69f7a4fc1b708856529243505e02555ab6d7a9ab8f878015559984e00596e2d0138

    • SSDEEP

      384:y1ovH+Vav5XMKDWMMA/juWz0tYUkwuaaFxXGvTgjcgj:Ko/1v5xvr/h0tYUk3FW0jNj

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks