e19cc6f7e059b841a114ad78deec9fe22fa5e2dba292c1076da62688f1ada513 | Triage

Sharing

General

Target

15212696218466245.bat
Size

10KB
Sample

240724-aynsks1dja
MD5

a70c4076ee57f6a55d9962a0b1ad964b
SHA1

a11a6b5d8368165f808498b1381f976ef1003b5d
SHA256

e19cc6f7e059b841a114ad78deec9fe22fa5e2dba292c1076da62688f1ada513
SHA512

e38f22fe3c35e3ada20702452a0850182fa6aa7b0195cbb6fe38869701a6b655f7c6378cf6c7c98d1a745c006df6334ac1a094f0e3d4616c63ea848336a5b4fa
SSDEEP

192:/DX33Tjr4uGYJhx/klTMPPSR/U9isHGl1VqEqbDe5AYs:Ln3Tf4ghx/klsqR/EisOsYs

Score

8^/10

execution

Malware Config

Targets

- Target
  
  15212696218466245.bat
- Size
  
  10KB
- MD5
  
  a70c4076ee57f6a55d9962a0b1ad964b
- SHA1
  
  a11a6b5d8368165f808498b1381f976ef1003b5d
- SHA256
  
  e19cc6f7e059b841a114ad78deec9fe22fa5e2dba292c1076da62688f1ada513
- SHA512
  
  e38f22fe3c35e3ada20702452a0850182fa6aa7b0195cbb6fe38869701a6b655f7c6378cf6c7c98d1a745c006df6334ac1a094f0e3d4616c63ea848336a5b4fa
- SSDEEP
  
  192:/DX33Tjr4uGYJhx/klTMPPSR/U9isHGl1VqEqbDe5AYs:Ln3Tf4ghx/klsqR/EisOsYs
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2