Overview

overview

8

Static

static

1

151089410762499.bat

windows7-x64

8

151089410762499.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    151089410762499.bat

  • Size

    15KB

  • Sample

    240722-npdg5svgqb

  • MD5

    4f030b0559327372bf7878f74c6d4e10

  • SHA1

    b1902d874aa1f9e331b25c667a3069f1fc92097f

  • SHA256

    9588aa0cd8fbb8c68335d254a7fe0ab3eae885c22865bfaf510bb83b64160f66

  • SHA512

    bebd50980e517dc54a83a8e2a7d86449580445684661952c7fe7be14e481e732db45019f2b8b03949048607a6aaf949199f7e762b3a0ee5ab49e6302653b7452

  • SSDEEP

    384:Cu1tWSITYmyOb2+HMrZIJpDasWjpCNVN8ZkrTQg/a6vQF45lJ2bavs:C2ZIThyOy+HoZIJpeHFCNVN0eTQg/aq+

Score
8/10
execution

Malware Config

Targets

    • Target

      151089410762499.bat

    • Size

      15KB

    • MD5

      4f030b0559327372bf7878f74c6d4e10

    • SHA1

      b1902d874aa1f9e331b25c667a3069f1fc92097f

    • SHA256

      9588aa0cd8fbb8c68335d254a7fe0ab3eae885c22865bfaf510bb83b64160f66

    • SHA512

      bebd50980e517dc54a83a8e2a7d86449580445684661952c7fe7be14e481e732db45019f2b8b03949048607a6aaf949199f7e762b3a0ee5ab49e6302653b7452

    • SSDEEP

      384:Cu1tWSITYmyOb2+HMrZIJpDasWjpCNVN8ZkrTQg/a6vQF45lJ2bavs:C2ZIThyOy+HoZIJpeHFCNVN0eTQg/aq+

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks