Overview

overview

10

Static

static

10

Stub.exe

windows7_x64

1

Stub.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Stub.exe

  • Size

    47KB

  • Sample

    220113-rxvceaaha4

  • MD5

    5b096656c0bf4ac1fbc05c1a097ae427

  • SHA1

    96c595b2c29ba72ee9b1dab7d5d8b064487158e3

  • SHA256

    fa0a5c7a162480d0bc13a372721cf042c42c356a140ee62174a6d151dac5ab61

  • SHA512

    ab2b59dd9f7a1c82fa06d5a90b4534750f51b2432c38083f807160fbbe2ada1d3c9c9d4feeadef6b1f86606c5d3d7fa3e477a9c2b3caed4e26e1272b295357c4

Score
10/10
asyncratmicrosoftphishingrat

Malware Config

Targets

    • Target

      Stub.exe

    • Size

      47KB

    • MD5

      5b096656c0bf4ac1fbc05c1a097ae427

    • SHA1

      96c595b2c29ba72ee9b1dab7d5d8b064487158e3

    • SHA256

      fa0a5c7a162480d0bc13a372721cf042c42c356a140ee62174a6d151dac5ab61

    • SHA512

      ab2b59dd9f7a1c82fa06d5a90b4534750f51b2432c38083f807160fbbe2ada1d3c9c9d4feeadef6b1f86606c5d3d7fa3e477a9c2b3caed4e26e1272b295357c4

    Score
    7/10
    microsoftphishing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks