Overview

overview

6

Static

static

Re ⚠️...��.eml

windows7-x64

6

Re ⚠️...��.eml

windows10-2004-x64

3

CONVOCAZIONE1 (2).jpg

windows7-x64

1

CONVOCAZIONE1 (2).jpg

windows10-2004-x64

3

email-html-2.html

windows7-x64

1

email-html-2.html

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Re ⚠️LETTURA IMPORTANTE⚠️.eml

  • Size

    783KB

  • Sample

    220930-qynqksefak

  • MD5

    5365b4a48b7bd17530de34a1c6eee0ad

  • SHA1

    5a4cec7c8609ca262555be1a445493dcafe6e0db

  • SHA256

    fd7db19a65a23c88a35f30112abd4570fcd0cec2d2546bfaba7a687fcfb535da

  • SHA512

    5ffe9bc39d5b3efc4c324135cd41d82a1fb7c204306912eb18cf73a5d3a4b7fc3ab1dc846e66e9ec02de7a55ce78ba182119745cc36c2a0a7aa11b24ab866757

  • SSDEEP

    24576:6wq+QR7jttehvLavq/sxSnDEjfDUqR1FKs:6Jnb62VxDfXnv

Score
6/10
collection

Malware Config

Targets

    • Target

      Re ⚠️LETTURA IMPORTANTE⚠️.eml

    • Size

      783KB

    • MD5

      5365b4a48b7bd17530de34a1c6eee0ad

    • SHA1

      5a4cec7c8609ca262555be1a445493dcafe6e0db

    • SHA256

      fd7db19a65a23c88a35f30112abd4570fcd0cec2d2546bfaba7a687fcfb535da

    • SHA512

      5ffe9bc39d5b3efc4c324135cd41d82a1fb7c204306912eb18cf73a5d3a4b7fc3ab1dc846e66e9ec02de7a55ce78ba182119745cc36c2a0a7aa11b24ab866757

    • SSDEEP

      24576:6wq+QR7jttehvLavq/sxSnDEjfDUqR1FKs:6Jnb62VxDfXnv

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      CONVOCAZIONE1 (2).jpg

    • Size

      563KB

    • MD5

      f06a1372c188c819ca123f39ad7e1aa2

    • SHA1

      07436b0e8d08b91940efe1c5278e4562cc750ccb

    • SHA256

      57f358b688798469832d3b4f3fda7f99eaa612f8bb9d954c3cc935f47d98c931

    • SHA512

      91ddb95bbc43dedf5ac5c79a07f73426e65eea6bc43cea14e22d2a0d28183b8878cf1566a299ca269bf328d8bfa17fff40755f036b66f1e5460eef6a8e0809e4

    • SSDEEP

      12288:yIGZPy8lW8f0JJbn1tgPUbQVcphU2OOhkXvAUAtwVCj5NaKmaWo:yFvlOJvazVINOO2uwCj5NaaN

    Score
    3/10
    behavioral3behavioral4

    • Target

      email-html-2.txt

    • Size

      2KB

    • MD5

      f7656845da8d04ae7e6beb5c1c90c212

    • SHA1

      36c727dd4152793ef6bca775d61b2fc9701fa51b

    • SHA256

      dbec17be88d3bf4a925267b2b1857a6a779d806a1c66f371e99c459ea6c8c555

    • SHA512

      72e567128ccbd81b8675401282ab38067759a8233b0c4dfa7a0d490f1aba71925f6fb0328875b55f3585c712ae4115dd4357fbf2791907deb7f1a1ddf0055eb6

    Score
    1/10
    behavioral5behavioral6

    • Target

      email-plain-1.txt

    • Size

      154B

    • MD5

      af5f24f674cb594f32d4f8b099580664

    • SHA1

      2836bcb59d274d7a06203bab314ecdb9b0ef8acd

    • SHA256

      3869e071acd7872703bd93fc681a00c426e9437e5022f82faf91b8f57184a13c

    • SHA512

      ce1e9e387bbeffaa1ec3654ec781d290a24eff0b53a5933a34e4d1cdfebe3bb54f668d31fd0769028b8dc13aaf87c5d5467282a1b01464eaf6a834337117b20a

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks