668eddcc2d74b5bd17863fd2f1f22582e9d3ccf96d8a1ead2051288da4abe2ef | Triage

Sharing

General

Target

Mail Office365-validation.html
Size

17KB
Sample

221123-p9nz2sdd45
MD5

514d21ad453afe038f02d2a7e8702340
SHA1

8809c877c887ab5212ee26cda1b7a9bd867924e4
SHA256

668eddcc2d74b5bd17863fd2f1f22582e9d3ccf96d8a1ead2051288da4abe2ef
SHA512

25f481fade9feb273597481c0c50cc44a485ec6be164dafb78fdfcd18d63355645e5b2ee7881794f8f77ca5ac31e00581f160f3079d0c15e0deabb9a349253f8
SSDEEP

384:zV0bKwjOsB1+6jf8tmXsgfQvUz3vj+j5y0lFmvCSfz:z4KwjOset5gXzLsXTiCSfz

Score

6^/10

Malware Config

Targets

- Target
  
  Mail Office365-validation.html
- Size
  
  17KB
- MD5
  
  514d21ad453afe038f02d2a7e8702340
- SHA1
  
  8809c877c887ab5212ee26cda1b7a9bd867924e4
- SHA256
  
  668eddcc2d74b5bd17863fd2f1f22582e9d3ccf96d8a1ead2051288da4abe2ef
- SHA512
  
  25f481fade9feb273597481c0c50cc44a485ec6be164dafb78fdfcd18d63355645e5b2ee7881794f8f77ca5ac31e00581f160f3079d0c15e0deabb9a349253f8
- SSDEEP
  
  384:zV0bKwjOsB1+6jf8tmXsgfQvUz3vj+j5y0lFmvCSfz:z4KwjOset5gXzLsXTiCSfz
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2