Overview

overview

8

Static

static

8

3510590280...8d.eml

windows7-x64

6

3510590280...8d.eml

windows10-2004-x64

3

office-att...-6.doc

windows7-x64

1

office-att...-6.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Samples_#hash 764a598a97085020764f46314a36b113080e4191c62f8e3dc9cd769520d807c1_2022-08-12_16-23-25.zip

  • Size

    2.5MB

  • Sample

    220812-kaly7adda4

  • MD5

    5be999c0c5a9b6459e5e4e3fb86c8c9f

  • SHA1

    26b0bb30a729dbdaf588ea69fc15bfc5dc5ffef3

  • SHA256

    5e07b6f54ddc0f1c9a611376f8eb30846e5b96c6562b25ff339380e5240ca105

  • SHA512

    6dc06ec480377ba6ef9d463adddc3e352211299fe15f0f6c884d104208393932d66d17acb5d641c35f0c05ed3fcacaae6fe6065c214c0f797595ea5d2fcd1bcf

Score
8/10
collectionmacromacro_on_action

Malware Config

Targets

    • Target

      3510590280406fa30eda94b3ae39058d

    • Size

      51.3MB

    • MD5

      3510590280406fa30eda94b3ae39058d

    • SHA1

      e350708d48e66cb754adf1190ead9abc050131d9

    • SHA256

      764a598a97085020764f46314a36b113080e4191c62f8e3dc9cd769520d807c1

    • SHA512

      d1b65d4005b0b01f500c3fd5b97d37db0ba7572eacc10598e0112e1bbbbfc0847c37101c29ca2f7a661c59c0eaeab2f4984c8507ffe68c5a9aad618c11e628c5

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      office-attachment-6

    • Size

      22KB

    • MD5

      8f344d4f4426080d96eb4a79d5e98bf5

    • SHA1

      480ddebe1b56c323b3444db86e75de2477a8b348

    • SHA256

      a46674ab11ffa2b608ca8b27ca5fe711ad53f71fb594bb0e0aa8615cbbd36e80

    • SHA512

      32c88f4aa6fbe07bb4a000ce5171a54e189f5b35059f87db55b24418e0bb752ea23e7fa7ac418d5706a624e83a37a86697eb9e852153c3ef66718e4247bbecaa

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

3
T1082

Query Registry

2
T1012

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks