Overview

overview

8

Static

static

1

CppMalware.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CppMalware.bat

  • Size

    1.1MB

  • Sample

    240908-tpryesvgkq

  • MD5

    3755ee9d1e3f09b292e47d59c3ceb231

  • SHA1

    d39c4799d32188e6b9dfa765a6543522f0653ae4

  • SHA256

    5d780e4cacc4542ca85abcef100a3952cc1ca3bc3cb4985d23c398e0a0df8d7d

  • SHA512

    b87ebbaaa0ffe32b701b29cd077da7110993562aea56b57a2aa654c3fdbf3327712728d4687f98d60b9e8aad92c56135f743847ca2b72a58bc507827bf1af075

  • SSDEEP

    24576:ME7kfjZDcwz6DdeQ5TzHjR8R+eNf9H3rm0f7jQ+glhW+:ID6dAjsW+

Score
8/10
execution

Malware Config

Targets

    • Target

      CppMalware.bat

    • Size

      1.1MB

    • MD5

      3755ee9d1e3f09b292e47d59c3ceb231

    • SHA1

      d39c4799d32188e6b9dfa765a6543522f0653ae4

    • SHA256

      5d780e4cacc4542ca85abcef100a3952cc1ca3bc3cb4985d23c398e0a0df8d7d

    • SHA512

      b87ebbaaa0ffe32b701b29cd077da7110993562aea56b57a2aa654c3fdbf3327712728d4687f98d60b9e8aad92c56135f743847ca2b72a58bc507827bf1af075

    • SSDEEP

      24576:ME7kfjZDcwz6DdeQ5TzHjR8R+eNf9H3rm0f7jQ+glhW+:ID6dAjsW+

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks