Overview

overview

8

Static

static

Fresno Payment.html

windows7-x64

5

Fresno Payment.html

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd1d9c0965e08d09c5dbe44a8580cdf1-sample.zip

  • Size

    1KB

  • Sample

    221001-ylgeqsdba6

  • MD5

    bdc180773ffc5483558670661e57a497

  • SHA1

    0be302cfa70765bde4330e94e7ccd3f9dd5229b4

  • SHA256

    50f5a4395b1dc9682a66c943ea06a146e00a94640f3510ddc5be8dce54dce10f

  • SHA512

    2c2fcabb2b5523efa2f13bb1b7c11db7d182ca44b8622e24b1d73c15b1aa7f04ff1183573cda47e43fdd3c3623ff1830bfb752eb48ec1dddef3de44f0d39fe35

Score
8/10
microsoftpersistencephishing

Malware Config

Targets

    • Target

      Fresno Payment.hTml

    • Size

      4KB

    • MD5

      124bf319b1453b2b0b128b4252e4a02f

    • SHA1

      29a5dc425c14d3389f98ac490222ba8f0cadfaf6

    • SHA256

      b08f46f3284555fd86150d29011ad68e0ac7e47bf2a09c670440985cf5551211

    • SHA512

      282844d8ff7b06d85e2cf2099a060e30eb701151106b60bbf2ce595e5aa4b445081c2a5c2e22f0bb22e7a800c448717b49195b09cbfdb80ec000988a40aaa52c

    • SSDEEP

      96:/wNPvtA8MwTlN6f9jjOpJSfyQIfzUUm8qYPYzD0gcYnThF70gR6Uq6:/wNXtnTlN6fljOpjhqYPYkgcYnThZRq6

    Score
    8/10
    microsoftphishingpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks