Overview

overview

10

Static

static

10

邮箱密�....0.exe

windows7-x64

3

邮箱密�....0.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c1be5ffdb2fc1b4e866493481b4a7054617939071a1c0b073e1d821d50300728

  • Size

    96KB

  • Sample

    221124-q2qdksge74

  • MD5

    718089e2ec6675c9ca6102545bec5f8c

  • SHA1

    1b586a61e192fc9aa19f2c89bc905fb16518347e

  • SHA256

    c1be5ffdb2fc1b4e866493481b4a7054617939071a1c0b073e1d821d50300728

  • SHA512

    c2b5bb6e3345ae6a9f4c627c919fce1faf087d8e04518396148b7698833025624a7dc3182b575b38a7c9c75f03af7552dd4f64a527fdd5c9b4878f97e5ad823a

  • SSDEEP

    3072:2aq38SKv58Y3EGc/V8Ruqbbemhbn1bJ3il6+TR1cPd:27sF3ut3ybxUt9+Pd

Score
10/10
blackmoonpersistence

Malware Config

Targets

    • Target

      邮箱密码破解 咔嚓mailsee1.0.exe

    • Size

      252KB

    • MD5

      95bd21e090d619be1688fb893db3cea1

    • SHA1

      51ebb2b8e54305ecdff2b700d3091dc103da00e7

    • SHA256

      fd252b6504ee55166c98f403dd12959ef34b9d8834e43e807bd70e717c61b9ac

    • SHA512

      93aaa77eb0d295d7c362bb94bae1a0a570430e5b9a4dfff24cf03477274cb93445cdb4f4f0af72af400ac26eccdbfc392aa7dbf0518dd1d4bcd428c684408589

    • SSDEEP

      3072:Nr9KKtUStQJeWIaidfO5+DHkSu0iyhb3xfBTdWISictNJKsEiuBWdWZ:NQKtUoOeWIai9DzM07nx6ijTaY

    Score
    6/10
    persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks