9442144610a2b030b54b15c92ec4d43487eb1f5a91029ff5a8b60255a4832136 | Triage

Submit
Reports

Overview

overview

7

Static

static

executable.2040.exe

windows7_x64

1

executable.2040.exe

windows10_x64

7

Sharing

General

Target

executable.2040.exe
Size

6KB
Sample

210923-t3jh7sefgj
MD5

f732b29568b5f8c9abff1e41d73fd97f
SHA1

d1c92bf79d415b0a410cf32618abe70f12c205b5
SHA256

9442144610a2b030b54b15c92ec4d43487eb1f5a91029ff5a8b60255a4832136
SHA512

411e526143c07c5cc4a5e601ff8c9fed09ca9fc6a64ced4bf484d01ccebaf964c51fce863a437eea41cac059a5ab3f6249703db19b3812b9d644201bc3cc801f

Score

7^/10

microsoft phishing

Static task

static1

Behavioral task

behavioral1

Sample

executable.2040.exe

Resource

win7v20210408

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

executable.2040.exe

Resource

win10-en-20210920

microsoft phishing

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  executable.2040.exe
- Size
  
  6KB
- MD5
  
  f732b29568b5f8c9abff1e41d73fd97f
- SHA1
  
  d1c92bf79d415b0a410cf32618abe70f12c205b5
- SHA256
  
  9442144610a2b030b54b15c92ec4d43487eb1f5a91029ff5a8b60255a4832136
- SHA512
  
  411e526143c07c5cc4a5e601ff8c9fed09ca9fc6a64ced4bf484d01ccebaf964c51fce863a437eea41cac059a5ab3f6249703db19b3812b9d644201bc3cc801f
Score

7^/10

microsoft phishing
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing

© 2018-2024

Terms | Privacy