Overview

overview

5

Static

static

eb5cbb7a3b...01.exe

windows7-x64

5

eb5cbb7a3b...01.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb5cbb7a3ba2eb00ef07a146147f953287e8ac0222c2eb5e5a2f14b8d22f4001

  • Size

    166KB

  • Sample

    221001-x7zyjadehq

  • MD5

    6bb9c8995bc5942eac2327c526ac55d0

  • SHA1

    44264802d9ae459b23cdfdbb2a98d9e228dc1e61

  • SHA256

    eb5cbb7a3ba2eb00ef07a146147f953287e8ac0222c2eb5e5a2f14b8d22f4001

  • SHA512

    8ad64a9b65d48b72c087075c18d174cccd4f31ae024f9503e54716e67cd6e7e83b8905fda6edb2e0a3de02811651a0dedd118716726b1af456ebbad922c65640

  • SSDEEP

    3072:Bh3iOqThp9pKa4CiNNATqThp9pKa44mINmyJwRU10f:OJL9BR0OsL9BphtR10f

Score
5/10
microsoftphishing

Malware Config

Targets

    • Target

      eb5cbb7a3ba2eb00ef07a146147f953287e8ac0222c2eb5e5a2f14b8d22f4001

    • Size

      166KB

    • MD5

      6bb9c8995bc5942eac2327c526ac55d0

    • SHA1

      44264802d9ae459b23cdfdbb2a98d9e228dc1e61

    • SHA256

      eb5cbb7a3ba2eb00ef07a146147f953287e8ac0222c2eb5e5a2f14b8d22f4001

    • SHA512

      8ad64a9b65d48b72c087075c18d174cccd4f31ae024f9503e54716e67cd6e7e83b8905fda6edb2e0a3de02811651a0dedd118716726b1af456ebbad922c65640

    • SSDEEP

      3072:Bh3iOqThp9pKa4CiNNATqThp9pKa44mINmyJwRU10f:OJL9BR0OsL9BphtR10f

    Score
    5/10
    microsoftphishing

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks