General

  • Target

    s.bat

  • Size

    589B

  • Sample

    250515-m2vfraeq8t

  • MD5

    c9fca5b9b8f7db7fc8716c50978e08d1

  • SHA1

    e9b68e1284653e11bd7709f3837ab32f8f19a46a

  • SHA256

    cd6cd477272a171cd6c8f840169e55a0a07c050afa3dc9ffb1037075e6db33ea

  • SHA512

    8e2e92783b829f6a98b1bf3e856cc3f11be997fdc4a3a82f7c7e24060398cf44bc41b566460809654916ba862cc457b817d67f69ac16e44bf7c10541fa8cbcf3

Score
8/10

Malware Config

Targets

    • Target

      s.bat

    • Size

      589B

    • MD5

      c9fca5b9b8f7db7fc8716c50978e08d1

    • SHA1

      e9b68e1284653e11bd7709f3837ab32f8f19a46a

    • SHA256

      cd6cd477272a171cd6c8f840169e55a0a07c050afa3dc9ffb1037075e6db33ea

    • SHA512

      8e2e92783b829f6a98b1bf3e856cc3f11be997fdc4a3a82f7c7e24060398cf44bc41b566460809654916ba862cc457b817d67f69ac16e44bf7c10541fa8cbcf3

    Score
    8/10
    • Blocklisted process makes network request

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v16

Tasks