General
-
Target
44082431655913134.bat
-
Size
15KB
-
Sample
240723-tnxsaaycpm
-
MD5
b9c6259e475c931b5847ad93973cb40f
-
SHA1
8b03e372edda34bb8f09dada958b306d233c5e08
-
SHA256
1a8b0b61238cb266b8e0ef588018300d5a358f53834c487723301c6b34ac72e7
-
SHA512
c03d42dd59b31e0a6b8eab6000c2e6ea71324cffe01c88a445074399a1dc06ae237c3d76a071807c36021afac43070308ceb9bf514244bd73dfcc0b215efca34
-
SSDEEP
384:FA+Q3AbCgr7iiwGkLivMrgL7adFhPhhPRGP/X0mBF33ZpcXHC9:K+Q3+3FwJ2vMML7rl3uHc
Malware Config
Targets
-
-
Target
44082431655913134.bat
-
Size
15KB
-
MD5
b9c6259e475c931b5847ad93973cb40f
-
SHA1
8b03e372edda34bb8f09dada958b306d233c5e08
-
SHA256
1a8b0b61238cb266b8e0ef588018300d5a358f53834c487723301c6b34ac72e7
-
SHA512
c03d42dd59b31e0a6b8eab6000c2e6ea71324cffe01c88a445074399a1dc06ae237c3d76a071807c36021afac43070308ceb9bf514244bd73dfcc0b215efca34
-
SSDEEP
384:FA+Q3AbCgr7iiwGkLivMrgL7adFhPhhPRGP/X0mBF33ZpcXHC9:K+Q3+3FwJ2vMML7rl3uHc
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell and hide display window.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-