b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101 | Triage

Submit
Reports

Overview

overview

7

Static

static

dridex

windows10_x64

7

Sharing

General

Target

b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101
Size

506KB
Sample

211029-kcj8dahfgk
MD5

4436c06a576741d235ce919b5b9f1da8
SHA1

9884ff434733cf93d080827486e47a8b9f3f962e
SHA256

b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101
SHA512

51e6cba383d725af1bd7a933059880ae8a2e2c99d936fd66a1d9e4fca7981186644fc432ed10c525c44ce1a139351648f7b7dbc1549d37912a5d0c1ba49456f8

Score

7^/10

microsoft phishing

Static task

static1

Behavioral task

behavioral1

Sample

b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101.exe

Resource

win10-en-20210920

microsoft phishing

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101
- Size
  
  506KB
- MD5
  
  4436c06a576741d235ce919b5b9f1da8
- SHA1
  
  9884ff434733cf93d080827486e47a8b9f3f962e
- SHA256
  
  b59e1d17a4a5d0cf5dad1edcd6cac9aef3aae5b4620d5b8a3f579747d903b101
- SHA512
  
  51e6cba383d725af1bd7a933059880ae8a2e2c99d936fd66a1d9e4fca7981186644fc432ed10c525c44ce1a139351648f7b7dbc1549d37912a5d0c1ba49456f8
Score

7^/10

microsoft phishing
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

microsoftphishing

© 2018-2024

Terms | Privacy