General

  • Target

    dTSMxBv5.bat

  • Size

    190B

  • Sample

    200213-pphg8nltfx

  • MD5

    b43fc9677f0267630d7259cae180102b

  • SHA1

    47b41ad33d7109bec3a432b7dd105153f0ba610b

  • SHA256

    656e7d92a11142f16b80b527eee75b122b5c19143c2c21da4c37af0d5bf57d7a

  • SHA512

    88804f6050a25e4861b337a9f4db75d21706ab81f15cb1d77b6aa29349e6534af25025cd5ec800f36136124aa37a2f99f241108a7355fcf71bfa6aaac9ffd492

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
ps1.dropper

http://185.103.242.78/pastes/dTSMxBv5

Targets

    • Target

      dTSMxBv5.bat

    • Size

      190B

    • MD5

      b43fc9677f0267630d7259cae180102b

    • SHA1

      47b41ad33d7109bec3a432b7dd105153f0ba610b

    • SHA256

      656e7d92a11142f16b80b527eee75b122b5c19143c2c21da4c37af0d5bf57d7a

    • SHA512

      88804f6050a25e4861b337a9f4db75d21706ab81f15cb1d77b6aa29349e6534af25025cd5ec800f36136124aa37a2f99f241108a7355fcf71bfa6aaac9ffd492

    Score
    10/10
    • Blacklisted process makes network request

    • Program crash

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks