General

  • Target

    file01.vbs

  • Size

    351B

  • Sample

    240809-zamm2sxgkn

  • MD5

    7ceece7a43564b9bb9e65e89da71bc33

  • SHA1

    e353cf48f8e3894c1ca8800eac47f5f5ab521260

  • SHA256

    b0eb2c45c2364adb75ecaa3bb74a75fa305b18408e92cd97fbb5b8bfb1400ec0

  • SHA512

    b36b5add6cc4212f27a9853ad9db8ef7e047e10274e72825e02ce8b342ef00a831f39a7ebaca9d08d01bc190e6d1790e356f4221a13a9c8fc8b7d6c9de7959f5

Score
8/10

Malware Config

Targets

    • Target

      file01.vbs

    • Size

      351B

    • MD5

      7ceece7a43564b9bb9e65e89da71bc33

    • SHA1

      e353cf48f8e3894c1ca8800eac47f5f5ab521260

    • SHA256

      b0eb2c45c2364adb75ecaa3bb74a75fa305b18408e92cd97fbb5b8bfb1400ec0

    • SHA512

      b36b5add6cc4212f27a9853ad9db8ef7e047e10274e72825e02ce8b342ef00a831f39a7ebaca9d08d01bc190e6d1790e356f4221a13a9c8fc8b7d6c9de7959f5

    Score
    8/10
    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks