Malware sandboxing report by Hatching Triage

Target

3c9470db8525f4b1403049ece5b4529e5fb09bfdca4a0cf524360c7bd7cc8c24

Size

135KB

Sample

220524-1blmtacefk

Score

6^/10

MD5

f2bd062d3e8be4033e86347350d14b54

SHA1

32277bc290388c67278767bc2d41c105a60f7d27

SHA256

3c9470db8525f4b1403049ece5b4529e5fb09bfdca4a0cf524360c7bd7cc8c24

SHA512

367de0f675aac19973a4167113507543edfbaad7dc7dec822281221a6223b0e3b8e5e93bdf0397c6468bd65c130946e4d3a410f0ca0ae7901032773f04d3c6ed

Target

3c9470db8525f4b1403049ece5b4529e5fb09bfdca4a0cf524360c7bd7cc8c24

MD5

f2bd062d3e8be4033e86347350d14b54

Filesize

135KB

Score

6^/10

SHA1

32277bc290388c67278767bc2d41c105a60f7d27

SHA256

3c9470db8525f4b1403049ece5b4529e5fb09bfdca4a0cf524360c7bd7cc8c24

SHA512

367de0f675aac19973a4167113507543edfbaad7dc7dec822281221a6223b0e3b8e5e93bdf0397c6468bd65c130946e4d3a410f0ca0ae7901032773f04d3c6ed

Signatures

Adds Run key to start application
Tags

persistence

TTPs

Registry Run Keys / Startup FolderModify Registry
Detected potential entity reuse from brand microsoft.
Tags

phishing microsoft

Related Tasks

behavioral1 behavioral2

Collection

Command and Control

Credential Access

Defense Evasion

Modify Registry

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

static1

Score

N/A

behavioral1

Score

1^/10

behavioral2

microsoft persistence phishing

Score

6^/10

Tags

Signatures

Adds Run key to start application

Tags

TTPs

Detected potential entity reuse from brand microsoft.

Tags

Related Tasks

static1

behavioral1

behavioral2