5a07dac7d869958de03b18ff83d9cdcb7931c69c3e19f3b4fd52bd264eac59cb | Triage

Sharing

General

Target

5a07dac7d869958de03b18ff83d9cdcb7931c69c3e19f3b4fd52bd264eac59cb
Size

68KB
Sample

221002-fcbtsaaddj
MD5

4749e51dc6932e715fd44b385d500d70
SHA1

2663a1942975eaa77e5a9ee81fb17cd981017032
SHA256

5a07dac7d869958de03b18ff83d9cdcb7931c69c3e19f3b4fd52bd264eac59cb
SHA512

c3eb1016f7950b0a8ff58da0af90dd361f64a51da9a1556f4bf2865d2d8119a2481908aa9c6bfd5930ecea5648c43d51623e4147312d8f10fcdfd809f332c4a8
SSDEEP

768:xQQSX6YXD0VXyhfXnSTe+ZQPqQGPL4vzZq2o9W7GsxBbPr:mXxXaXUXnDuQPJGCq2iW7z

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  5a07dac7d869958de03b18ff83d9cdcb7931c69c3e19f3b4fd52bd264eac59cb
- Size
  
  68KB
- MD5
  
  4749e51dc6932e715fd44b385d500d70
- SHA1
  
  2663a1942975eaa77e5a9ee81fb17cd981017032
- SHA256
  
  5a07dac7d869958de03b18ff83d9cdcb7931c69c3e19f3b4fd52bd264eac59cb
- SHA512
  
  c3eb1016f7950b0a8ff58da0af90dd361f64a51da9a1556f4bf2865d2d8119a2481908aa9c6bfd5930ecea5648c43d51623e4147312d8f10fcdfd809f332c4a8
- SSDEEP
  
  768:xQQSX6YXD0VXyhfXnSTe+ZQPqQGPL4vzZq2o9W7GsxBbPr:mXxXaXUXnDuQPJGCq2iW7z
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing