Overview

overview

6

Static

static

phish_aler....0.eml

windows7-x64

6

phish_aler....0.eml

windows10-2004-x64

3

email-html-1.html

windows7-x64

1

email-html-1.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    phish_alert_sp2_2.0.0.0.eml

  • Size

    33KB

  • Sample

    221128-q6nqjsgg37

  • MD5

    df26481291c15098f2b853e2ba5f0c12

  • SHA1

    afcc1bbe27bb583e8ebc00a4526e570a9a6c5384

  • SHA256

    1c692b0c0da50311e3d7cfec8bdff906ffca5e41be3252dcb05b13d6cdb25ece

  • SHA512

    903454f663dd8e49915646a53bcb70511aa45a563a21d55034230517ed5f5fbb414ce63418836dab20722ce104dbc8ea833a23097090446c611c440ba6b4bbc9

  • SSDEEP

    384:eiZ47cApil6My7gUuvbUb6rzUvXa2BT12/685d6fRgMZqQi9n67va9n7JVUoR3Ym:ei+gvoAUSs1ZqQbaZD9Dea3koL

Score
6/10
collection

Malware Config

Targets

    • Target

      phish_alert_sp2_2.0.0.0.eml

    • Size

      33KB

    • MD5

      df26481291c15098f2b853e2ba5f0c12

    • SHA1

      afcc1bbe27bb583e8ebc00a4526e570a9a6c5384

    • SHA256

      1c692b0c0da50311e3d7cfec8bdff906ffca5e41be3252dcb05b13d6cdb25ece

    • SHA512

      903454f663dd8e49915646a53bcb70511aa45a563a21d55034230517ed5f5fbb414ce63418836dab20722ce104dbc8ea833a23097090446c611c440ba6b4bbc9

    • SSDEEP

      384:eiZ47cApil6My7gUuvbUb6rzUvXa2BT12/685d6fRgMZqQi9n67va9n7JVUoR3Ym:ei+gvoAUSs1ZqQbaZD9Dea3koL

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      email-html-1.txt

    • Size

      21KB

    • MD5

      365db3d727b5d6a935951373803732d0

    • SHA1

      57e88dfed341fe036fdffcfe41b27e2c49b6949a

    • SHA256

      30f5f64678f9bab998ac73d327e59c5080a8c060c4bdb9e9d19540dd5d06086c

    • SHA512

      996408ab3ea8e1b0540874b6f74d1f39ab245d8353ff678afd15c5f55b2f4d7a4523d27b7c746ff42d5783394de9ccfd061b384da2da4ec76beafb2f6731e750

    • SSDEEP

      384:sbaWlxqMBZnV0lSp42lSMhSA6l43gGxc9Ycoo:h0V0lSpxlSMhv6lOgGMAo

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks