General
-
Target
run.vbs
-
Size
3KB
-
Sample
240815-1t8v3a1gkn
-
MD5
5b4bd0c3f7398cf3c4a1b5a98ec3a304
-
SHA1
11c774313676b1db620bb87a587bfe03ae0421d1
-
SHA256
65752cf79676167579476dc6f1c49d0ee5996ba28b41d94e6ee46bb9915ddedb
-
SHA512
bf45506e91bf9778d609c9f66ace37a98088d20089907af221e37c229c4a5b0c25fa1c77d82ac1983de50994ee5e9165681b0b330496944529eeb8a260b528a2
Static task
static1
Behavioral task
behavioral1
Sample
run.wsf
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
run.vbs
-
Size
3KB
-
MD5
5b4bd0c3f7398cf3c4a1b5a98ec3a304
-
SHA1
11c774313676b1db620bb87a587bfe03ae0421d1
-
SHA256
65752cf79676167579476dc6f1c49d0ee5996ba28b41d94e6ee46bb9915ddedb
-
SHA512
bf45506e91bf9778d609c9f66ace37a98088d20089907af221e37c229c4a5b0c25fa1c77d82ac1983de50994ee5e9165681b0b330496944529eeb8a260b528a2
-
Possible privilege escalation attempt
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Modifies file permissions
-