Overview

overview

8

Static

static

1

2413014616...27.bat

windows7-x64

8

2413014616...27.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    24130146162728328827.bat

  • Size

    13KB

  • Sample

    240721-s2z9wsvbmh

  • MD5

    6ed546d2deb0a781f3e1c2197f5189b8

  • SHA1

    6299a1721115f57bbfae39e0ab05ab0a8766bb69

  • SHA256

    3e87e2964b2673078bb2425052f131ae626456a514b06d53db31c52ea3650d79

  • SHA512

    ef5042593ef381fdb6bb0ed3b23fcf14ed8ff2fd232c5519e80422f691fdf3c6134adaf354d9ba05a9e36e9de9fccbf7c7f5137b68885d63c7c5bc3b781e7e85

  • SSDEEP

    384:lbvdlB44xqjSgVQLIClYlnwuwluwutTQJG9SP6cdC/eH8:lbvreGgVQLIClYlwuwluwTU9W6cdC/D

Score
8/10
execution

Malware Config

Targets

    • Target

      24130146162728328827.bat

    • Size

      13KB

    • MD5

      6ed546d2deb0a781f3e1c2197f5189b8

    • SHA1

      6299a1721115f57bbfae39e0ab05ab0a8766bb69

    • SHA256

      3e87e2964b2673078bb2425052f131ae626456a514b06d53db31c52ea3650d79

    • SHA512

      ef5042593ef381fdb6bb0ed3b23fcf14ed8ff2fd232c5519e80422f691fdf3c6134adaf354d9ba05a9e36e9de9fccbf7c7f5137b68885d63c7c5bc3b781e7e85

    • SSDEEP

      384:lbvdlB44xqjSgVQLIClYlnwuwluwutTQJG9SP6cdC/eH8:lbvreGgVQLIClYlwuwluwTU9W6cdC/D

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks