Overview

overview

8

Static

static

1

1217226175...42.bat

windows7-x64

8

1217226175...42.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    12172261751013130142.bat

  • Size

    18KB

  • Sample

    240721-jnwj4sybnj

  • MD5

    f6058df881656f6ab459e649b859cdfe

  • SHA1

    89928516d923e83a70353f60c3079cd17df40398

  • SHA256

    4ac2da8e1be3003dbfc77fde78691394f741acd8e21f72d20d781acbdc940290

  • SHA512

    b63cf82f27405d50c5ff4f4107cb28eb842c9e52a9012ec71b814332478d8559e6de662e9e20537bd01b8e4a2b3095f0adb0fd66925b9194269a38b7002d686f

  • SSDEEP

    384:kEmP+xiA9F7TYwFEJ0GjGnBWFVUYUxMYgH37wBv70pYJKEJe1Y:VmPZAH3d2JdULxMY2Lw9YChJe1Y

Score
8/10
execution

Malware Config

Targets

    • Target

      12172261751013130142.bat

    • Size

      18KB

    • MD5

      f6058df881656f6ab459e649b859cdfe

    • SHA1

      89928516d923e83a70353f60c3079cd17df40398

    • SHA256

      4ac2da8e1be3003dbfc77fde78691394f741acd8e21f72d20d781acbdc940290

    • SHA512

      b63cf82f27405d50c5ff4f4107cb28eb842c9e52a9012ec71b814332478d8559e6de662e9e20537bd01b8e4a2b3095f0adb0fd66925b9194269a38b7002d686f

    • SSDEEP

      384:kEmP+xiA9F7TYwFEJ0GjGnBWFVUYUxMYgH37wBv70pYJKEJe1Y:VmPZAH3d2JdULxMY2Lw9YChJe1Y

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks