Overview

overview

10

Static

static

8

URLScan

urlscan

10

https://secure-web.c...

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://secure-web.cisco.com/1dd_XQNvJHoOtnaSc1CDdw1NiPjWBkQpDaZSpTobcqtBKH37749eE3USTUVKr_COUaDK-s2aI4DYBIp58NuNckZ8qOjzeVb7IKOJ_mJNqRebPFKpl6LKU8h3kMpK-SjqQma0sMPsxGT_CqjFYDW4HV-L51QoXK5OYwFcXpigztR0LqFEMfAF2dUjhwMPtmaNyucvG2okeQtWvTN4ysda5Mhwye_B6Z1NGmndCcu_SluwJP4W-ZcDpAeXH9aXBCkNOr8Tb0tAoVrff2WWbLFBhq7IT3CXl_Sw-yDTlwCT468z0svR8KWxHLFspU3vZnrL6/https%3A%2F%2Fofficemail001-irs-6d107b.netlify.app%2F%23mark.kantola%40dot.wi.gov

  • Sample

    220112-rnpqkachdj

Score
10/10
genericemailphishing

Malware Config

Targets

    • Target

      https://secure-web.cisco.com/1dd_XQNvJHoOtnaSc1CDdw1NiPjWBkQpDaZSpTobcqtBKH37749eE3USTUVKr_COUaDK-s2aI4DYBIp58NuNckZ8qOjzeVb7IKOJ_mJNqRebPFKpl6LKU8h3kMpK-SjqQma0sMPsxGT_CqjFYDW4HV-L51QoXK5OYwFcXpigztR0LqFEMfAF2dUjhwMPtmaNyucvG2okeQtWvTN4ysda5Mhwye_B6Z1NGmndCcu_SluwJP4W-ZcDpAeXH9aXBCkNOr8Tb0tAoVrff2WWbLFBhq7IT3CXl_Sw-yDTlwCT468z0svR8KWxHLFspU3vZnrL6/https%3A%2F%2Fofficemail001-irs-6d107b.netlify.app%2F%23mark.kantola%40dot.wi.gov

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks