General

  • Target

    code.vbs

  • Size

    1KB

  • Sample

    240809-zrmpdasfpb

  • MD5

    c6e5cb9d44f96e8b43d067245ee0bae4

  • SHA1

    25d8aa463da741a210f30c04a1915888a2686b11

  • SHA256

    df23cd293cabe8742d6797d131618a7776c32e65cd4dc45a257a671f63d9e1cc

  • SHA512

    13661179b40ee19062cb868916afd5a2a6961281681056c4f5239389dd7a6c58c1411e16cc547c998fc76e73cfad1a69db68681fcee6de31cbfd975c8706797b

Score
8/10

Malware Config

Targets

    • Target

      code.vbs

    • Size

      1KB

    • MD5

      c6e5cb9d44f96e8b43d067245ee0bae4

    • SHA1

      25d8aa463da741a210f30c04a1915888a2686b11

    • SHA256

      df23cd293cabe8742d6797d131618a7776c32e65cd4dc45a257a671f63d9e1cc

    • SHA512

      13661179b40ee19062cb868916afd5a2a6961281681056c4f5239389dd7a6c58c1411e16cc547c998fc76e73cfad1a69db68681fcee6de31cbfd975c8706797b

    Score
    8/10
    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks