34a7925bc11164c53c522a1c1ad13656fc4263cab5175c2be619fc8b885f2560 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

trigger.vbs
Size

1KB
Sample

240925-vfjq5awenj
MD5

4e5ad81f64bea5c1cdbf649ee98c95e8
SHA1

3f632b8a4f2f6e174bcd1754cad5616e6db5eb3b
SHA256

34a7925bc11164c53c522a1c1ad13656fc4263cab5175c2be619fc8b885f2560
SHA512

160c91906437d2a2fb6f10c2fef625ffde335b78be56f61c83cd5a826f0d27e87048ad8f4e312708d27d1410f33dea212891d2768ad57b4399e8dd24687f2b42

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  trigger.vbs
- Size
  
  1KB
- MD5
  
  4e5ad81f64bea5c1cdbf649ee98c95e8
- SHA1
  
  3f632b8a4f2f6e174bcd1754cad5616e6db5eb3b
- SHA256
  
  34a7925bc11164c53c522a1c1ad13656fc4263cab5175c2be619fc8b885f2560
- SHA512
  
  160c91906437d2a2fb6f10c2fef625ffde335b78be56f61c83cd5a826f0d27e87048ad8f4e312708d27d1410f33dea212891d2768ad57b4399e8dd24687f2b42
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2