Overview

overview

10

Static

static

1

db48c68674...d8.exe

windows7-x64

8

db48c68674...d8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db48c68674dec6499fe73b17f662a3c0acf05ffbb81cf67a42635bad46d6c3d8

  • Size

    933KB

  • Sample

    221128-fk1swaca8v

  • MD5

    12ed935858421fff7a1f90aa14eedf27

  • SHA1

    639798c8135091898416d75ff2d47a75ccfe4567

  • SHA256

    db48c68674dec6499fe73b17f662a3c0acf05ffbb81cf67a42635bad46d6c3d8

  • SHA512

    10a2f33467327c4d79091ffbb9e20c815873f8f2f563e86d4954b386a072035cc06cbde27f9d32b79701079f66a33d02481fc5956224067234ae86d11bab09e8

  • SSDEEP

    24576:hyVxp3LF+DAVp2K1s000LvZIlasyRxO2XPPiXft:UN3467g+PpSft

Score
10/10
phishing

Malware Config

Targets

    • Target

      db48c68674dec6499fe73b17f662a3c0acf05ffbb81cf67a42635bad46d6c3d8

    • Size

      933KB

    • MD5

      12ed935858421fff7a1f90aa14eedf27

    • SHA1

      639798c8135091898416d75ff2d47a75ccfe4567

    • SHA256

      db48c68674dec6499fe73b17f662a3c0acf05ffbb81cf67a42635bad46d6c3d8

    • SHA512

      10a2f33467327c4d79091ffbb9e20c815873f8f2f563e86d4954b386a072035cc06cbde27f9d32b79701079f66a33d02481fc5956224067234ae86d11bab09e8

    • SSDEEP

      24576:hyVxp3LF+DAVp2K1s000LvZIlasyRxO2XPPiXft:UN3467g+PpSft

    Score
    10/10
    phishing

    • Detected phishing page

      phishing

    • Downloads MZ/PE file

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks