16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c | Triage

Submit
Reports

Overview

overview

6

Static

static

16def676ae...6c.exe

windows7-x64

5

16def676ae...6c.exe

windows10-2004-x64

6

Sharing

General

Target

16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c
Size

505KB
Sample

220801-qynqkshhgp
MD5

32802e6499dac53a80b7c267e58808d5
SHA1

689a38fa7d610436cf3a7004d31f8f4da5a1ece1
SHA256

16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c
SHA512

b87c8fb9887dfe13b5f022bb7e6b189084e165c06f984dc35550d9fd4be1c4bbd699aad42a828514811f4c3e176d8f1b2ebe721e60a55b79cb4f3a7536efc783

Score

6^/10

microsoft persistence phishing

Static task

static1

Behavioral task

behavioral1

Sample

16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c.exe

Resource

win7-20220718-en

microsoft phishing

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c.exe

Resource

win10v2004-20220722-en

microsoft persistence phishing

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c
- Size
  
  505KB
- MD5
  
  32802e6499dac53a80b7c267e58808d5
- SHA1
  
  689a38fa7d610436cf3a7004d31f8f4da5a1ece1
- SHA256
  
  16def676ae1a99a5b7b1f38bc495ac8d89290c29e3ab8019d5258ef5bcd6726c
- SHA512
  
  b87c8fb9887dfe13b5f022bb7e6b189084e165c06f984dc35550d9fd4be1c4bbd699aad42a828514811f4c3e176d8f1b2ebe721e60a55b79cb4f3a7536efc783
Score

6^/10

microsoft phishing persistence
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

microsoftphishing

behavioral2

microsoftpersistencephishing

© 2018-2024

Terms | Privacy