42f7b93f3a2538f4aeb309285e2984c3b063fe1081c5cacd557d4ffc10b6af4d | Triage

Submit
Reports

Overview

overview

8

Static

static

1

x.virus.cmd

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

x.virus.zip
Size

1KB
Sample

240722-lnr8ss1fjj
MD5

507f0f4513329705e408aa5f91fb957f
SHA1

b31c44f156e6fa406884ccea64c3005e512135ef
SHA256

42f7b93f3a2538f4aeb309285e2984c3b063fe1081c5cacd557d4ffc10b6af4d
SHA512

cbf25dc8132d9645e4022b249bfc15f2c7d4c2ebf3cd9e4d7721278dfd4761f98be7f250ec8a97c560e5e05df2bf79fd4802ab57993ab8c892ee0a39e62f28d3

Score

8^/10

evasion

Static task

static1

Behavioral task

behavioral1

Sample

x.virus.cmd

Resource

win10v2004-20240709-en

windows10-2004-x64

20 signatures

1800 seconds

Malware Config

Targets

- Target
  
  x.virus.cmd
- Size
  
  3KB
- MD5
  
  997fd1c1fd4ad1a512256d496825a57f
- SHA1
  
  f9c9f5d0b91bed79b932b95d5e38d6c1bc81d265
- SHA256
  
  d25efc3955169f5850573243ac27fac061aa62f3684ee9132db4e68b10c2c3d9
- SHA512
  
  a9cfae9fd49f97365adee5f3438bef5c03de98ea2de35af1097441550ce1cb81b95acf91e5f02df425e2c13bff386a22093f1e96fbb7ff132e5223a2915de723
Score

8^/10

evasion
- Disables Task Manager via registry modification
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy