General

  • Target

    run.vbs

  • Size

    3KB

  • Sample

    240815-1t8v3a1gkn

  • MD5

    5b4bd0c3f7398cf3c4a1b5a98ec3a304

  • SHA1

    11c774313676b1db620bb87a587bfe03ae0421d1

  • SHA256

    65752cf79676167579476dc6f1c49d0ee5996ba28b41d94e6ee46bb9915ddedb

  • SHA512

    bf45506e91bf9778d609c9f66ace37a98088d20089907af221e37c229c4a5b0c25fa1c77d82ac1983de50994ee5e9165681b0b330496944529eeb8a260b528a2

Score
8/10

Malware Config

Targets

    • Target

      run.vbs

    • Size

      3KB

    • MD5

      5b4bd0c3f7398cf3c4a1b5a98ec3a304

    • SHA1

      11c774313676b1db620bb87a587bfe03ae0421d1

    • SHA256

      65752cf79676167579476dc6f1c49d0ee5996ba28b41d94e6ee46bb9915ddedb

    • SHA512

      bf45506e91bf9778d609c9f66ace37a98088d20089907af221e37c229c4a5b0c25fa1c77d82ac1983de50994ee5e9165681b0b330496944529eeb8a260b528a2

    Score
    8/10
    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks