General

  • Target

    batty.bat

  • Size

    4KB

  • Sample

    240929-jh96bavdpp

  • MD5

    9f3acd56e646d8eae4647eeffa0741cd

  • SHA1

    0e916f49a089823411d0b444454a867bf9fb1f2f

  • SHA256

    766d22bf250aab9e31d95aeadc35c4bab5e5bbbaf0538c0fb7b7d74fc13cf277

  • SHA512

    c62649abf78880ba063d7290f0b4665c668c39f3a3e8ac3c92bf541016c6d6dc7e43cd1c6370a9beb0499b695b40786ff7b10429cedafba6f683bc377ccc0a7c

  • SSDEEP

    48:17l9BNXcf6iQW2FK+8OEW9+HeEdUm/E2n23WwkFEeJE/sPEijE1Ms9Xc/fDKyebm:17jE+8+8HFU22mZXMGEny/N7bDjT

Malware Config

Targets

    • Target

      batty.bat

    • Size

      4KB

    • MD5

      9f3acd56e646d8eae4647eeffa0741cd

    • SHA1

      0e916f49a089823411d0b444454a867bf9fb1f2f

    • SHA256

      766d22bf250aab9e31d95aeadc35c4bab5e5bbbaf0538c0fb7b7d74fc13cf277

    • SHA512

      c62649abf78880ba063d7290f0b4665c668c39f3a3e8ac3c92bf541016c6d6dc7e43cd1c6370a9beb0499b695b40786ff7b10429cedafba6f683bc377ccc0a7c

    • SSDEEP

      48:17l9BNXcf6iQW2FK+8OEW9+HeEdUm/E2n23WwkFEeJE/sPEijE1Ms9Xc/fDKyebm:17jE+8+8HFU22mZXMGEny/N7bDjT

    • Disables RegEdit via registry modification

    • Disables Task Manager via registry modification

    • Modifies Windows Firewall

    • Possible privilege escalation attempt

    • Modifies file permissions

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks