e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

e6f2d4b6c2...80.vbs

windows7-x64

8

e6f2d4b6c2...80.vbs

windows10-2004-x64

8

Sharing

General

Target

e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680.vbs
Size

6KB
Sample

241002-b3x3gs1cnk
MD5

d31a2cb801264fbe84209118744c5cb3
SHA1

efa1ae48805fbdd1a03121822e35b80c95fbc328
SHA256

e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680
SHA512

777cb3e8f8ecc79fe2ff520d7cbcb118a0288ee823d29f7c2ab992c92f5133a1d3322577c2e727b304d5ff6806725dafaf8ccc5e98341d751358a769ff4a9651
SSDEEP

96:6QbDI8DRJc5aDwFh97Hno1mZuJkoJf6zbTM0vAt0bWxiJO4/:6KD3DLcmeh9jwmZNoozbTMUA6bWiY4/

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680.vbs

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680.vbs

Resource

win10v2004-20240802-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680.vbs
- Size
  
  6KB
- MD5
  
  d31a2cb801264fbe84209118744c5cb3
- SHA1
  
  efa1ae48805fbdd1a03121822e35b80c95fbc328
- SHA256
  
  e6f2d4b6c2f36e268eb147746087928f7a0b68e974d603959a3961a7b00e1680
- SHA512
  
  777cb3e8f8ecc79fe2ff520d7cbcb118a0288ee823d29f7c2ab992c92f5133a1d3322577c2e727b304d5ff6806725dafaf8ccc5e98341d751358a769ff4a9651
- SSDEEP
  
  96:6QbDI8DRJc5aDwFh97Hno1mZuJkoJf6zbTM0vAt0bWxiJO4/:6KD3DLcmeh9jwmZNoozbTMUA6bWiY4/
Score

8^/10

discovery
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy