9e06d175c76b3457bba2b4fbd688edcab82a5a55cff9be746d8fefbb0b637ab4 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

ldvb.vbs

windows7-x64

1

ldvb.vbs

windows10-2004-x64

8

Sharing

General

Target

ldvb.exe
Size

1KB
Sample

241119-w2p1pszclf
MD5

eefbb9e4a9fd600d019cac1535868014
SHA1

d24a2c0f2b6732bfe9de1c48e4ae6e11242948aa
SHA256

9e06d175c76b3457bba2b4fbd688edcab82a5a55cff9be746d8fefbb0b637ab4
SHA512

22537357f3436cfb20c97f05cc86a6b563783416a808323d6228bc7ee1c16a47ac6ee311014cdb2435d3b60e110dcbd1ff3781ae590f25a175f8d941fee84e72

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

ldvb.vbs

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ldvb.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ldvb.exe
- Size
  
  1KB
- MD5
  
  eefbb9e4a9fd600d019cac1535868014
- SHA1
  
  d24a2c0f2b6732bfe9de1c48e4ae6e11242948aa
- SHA256
  
  9e06d175c76b3457bba2b4fbd688edcab82a5a55cff9be746d8fefbb0b637ab4
- SHA512
  
  22537357f3436cfb20c97f05cc86a6b563783416a808323d6228bc7ee1c16a47ac6ee311014cdb2435d3b60e110dcbd1ff3781ae590f25a175f8d941fee84e72
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy