Extracted

• • Target

    Pago1032024.lnk

  • Size

    2KB

  • MD5

    436a561db9d53d159eda53d143817286

  • SHA1

    bed3f7945e63502778ec44a2a1d6709fa0e505bd

  • SHA256

    351ba667cbf05bad2075c1a01e84e9473ed73245bc611daed3e0b6001da2a296

  • SHA512

    b3f9f410935934ac1cb42dc8ab81f4292ef746b1cbf35b12671780646419086b681dd9e06f053ed8c313c8770b2ccc8f8aac5adf338116aab16998f08467c279

  Score

  10^/10

  execution

  • Blocklisted process makes network request

  • Command and Scripting Interpreter: PowerShell

    Run Powershell and hide display window.

    execution

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  behavioral1behavioral2