f83a20c3c3e945153b381d7e4c76d49080a65710db2a1f4dc1030aefe27eaafd | Triage

Sharing

General

Target

2973946871269414620.bat
Size

10KB
Sample

240723-za4xbsxbkp
MD5

c92bd4a438ecdcec615706c361559e2b
SHA1

c686178f71310ff82aa0fcae13dfb2eb46605a8d
SHA256

f83a20c3c3e945153b381d7e4c76d49080a65710db2a1f4dc1030aefe27eaafd
SHA512

7f5746377ab409234309182e43afd78931df694de33c897fd9502c1a3bdf85ecc6c7c2fe8ebb9704f791235648e488fac52210e804c23ab8ce83259aa6cedfdf
SSDEEP

192:kK6bX6T//u/JvgOaekPJbh3HI5gZohxFzHt/p3pakb65SLX:DP/4gAcd3HI5SExZlCQ65SLX

Score

8^/10

execution

Malware Config

Targets

- Target
  
  2973946871269414620.bat
- Size
  
  10KB
- MD5
  
  c92bd4a438ecdcec615706c361559e2b
- SHA1
  
  c686178f71310ff82aa0fcae13dfb2eb46605a8d
- SHA256
  
  f83a20c3c3e945153b381d7e4c76d49080a65710db2a1f4dc1030aefe27eaafd
- SHA512
  
  7f5746377ab409234309182e43afd78931df694de33c897fd9502c1a3bdf85ecc6c7c2fe8ebb9704f791235648e488fac52210e804c23ab8ce83259aa6cedfdf
- SSDEEP
  
  192:kK6bX6T//u/JvgOaekPJbh3HI5gZohxFzHt/p3pakb65SLX:DP/4gAcd3HI5SExZlCQ65SLX
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2