General

  • Target

    17142297572274029818.bat

  • Size

    18KB

  • Sample

    240721-snsynathka

  • MD5

    e83b902d0c8f20003deccf20f90598d1

  • SHA1

    44bdcb3a1f9feb1a35647d035aa93d18c451aac8

  • SHA256

    06570081c4c7f77f809600877e8c6fa39a2771a77cc1214cfa0f46d27841e8c9

  • SHA512

    47ec79598cede4ae1977ad726f5db801f2b852b61bfb7e8b7d812c702c67a327b08db2ac3b3838adb517ef4cd474b08524ed3c28e78ed157e978bbbe965f18eb

  • SSDEEP

    384:DcRJEtd8uTytfTA5Z6lNf/obBxgWKXi6S3tWnW4:oRJK8dfT8Z633o7Kyh3Y3

Score
8/10

Malware Config

Targets

    • Target

      17142297572274029818.bat

    • Size

      18KB

    • MD5

      e83b902d0c8f20003deccf20f90598d1

    • SHA1

      44bdcb3a1f9feb1a35647d035aa93d18c451aac8

    • SHA256

      06570081c4c7f77f809600877e8c6fa39a2771a77cc1214cfa0f46d27841e8c9

    • SHA512

      47ec79598cede4ae1977ad726f5db801f2b852b61bfb7e8b7d812c702c67a327b08db2ac3b3838adb517ef4cd474b08524ed3c28e78ed157e978bbbe965f18eb

    • SSDEEP

      384:DcRJEtd8uTytfTA5Z6lNf/obBxgWKXi6S3tWnW4:oRJK8dfT8Z633o7Kyh3Y3

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks