46a713f4023c65799f2f98cffd9b6c21bc54590c8d36170f6508adbd46f75c5c | Triage

Sharing

General

Target

46a713f4023c65799f2f98cffd9b6c21bc54590c8d36170f6508adbd46f75c5c
Size

1.0MB
Sample

221126-3w8desea34
MD5

9a6290cf073d4ee31737c1000051efbd
SHA1

adad948abdf7d925d6b8887d3c685b043abeb590
SHA256

46a713f4023c65799f2f98cffd9b6c21bc54590c8d36170f6508adbd46f75c5c
SHA512

cb15cc93ec9169110abdcff0da55548af738e2424f010cc6c728fe8b2f66b6949a8855807cd992a0935f8370ca58d569844ffe02383b448a53177bcd6eda4f9e
SSDEEP

12288:h3OUoLE11S7RIEc0t35FHTF/l7fEBg6bF1xzWdgpdZz1Ih4pFMnjIj:tOUop71xb52B/B1xzvfZziy3+Ej

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  46a713f4023c65799f2f98cffd9b6c21bc54590c8d36170f6508adbd46f75c5c
- Size
  
  1.0MB
- MD5
  
  9a6290cf073d4ee31737c1000051efbd
- SHA1
  
  adad948abdf7d925d6b8887d3c685b043abeb590
- SHA256
  
  46a713f4023c65799f2f98cffd9b6c21bc54590c8d36170f6508adbd46f75c5c
- SHA512
  
  cb15cc93ec9169110abdcff0da55548af738e2424f010cc6c728fe8b2f66b6949a8855807cd992a0935f8370ca58d569844ffe02383b448a53177bcd6eda4f9e
- SSDEEP
  
  12288:h3OUoLE11S7RIEc0t35FHTF/l7fEBg6bF1xzWdgpdZz1Ih4pFMnjIj:tOUop71xb52B/B1xzvfZziy3+Ej
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing