4e47fb2e4891f176fc901eac2e3d402238fd46e7b9af3f172409423cea5c4a41 | Triage

Sharing

General

Target

phish_alert_sp2_2.0.0.0.eml
Size

10KB
Sample

221129-n8v7asah6t
MD5

d40188b8c43426676b0cab1fd7ac7422
SHA1

dc2247970c1db5674552387d47b091c3cb3d5dfa
SHA256

4e47fb2e4891f176fc901eac2e3d402238fd46e7b9af3f172409423cea5c4a41
SHA512

5603a574d38ba19415bd2afeed3d2f9511ad1f0a0670793bcb5e888ae43613fe435fd457b8e875c7d324f317135451a6454388e00d4de6013490cafd88988fe2
SSDEEP

96:VRyA+tROOUWYtiYhWyW5VX8FQ61Y7gtg8rlZfGEALwOc5jaCxX4Ow3YPLzaRwxOJ:e/SY0/H4D+X0z1E1gdXrWy6GvEob

Score

6^/10

collection

Malware Config

Targets

- Target
  
  phish_alert_sp2_2.0.0.0.eml
- Size
  
  10KB
- MD5
  
  d40188b8c43426676b0cab1fd7ac7422
- SHA1
  
  dc2247970c1db5674552387d47b091c3cb3d5dfa
- SHA256
  
  4e47fb2e4891f176fc901eac2e3d402238fd46e7b9af3f172409423cea5c4a41
- SHA512
  
  5603a574d38ba19415bd2afeed3d2f9511ad1f0a0670793bcb5e888ae43613fe435fd457b8e875c7d324f317135451a6454388e00d4de6013490cafd88988fe2
- SSDEEP
  
  96:VRyA+tROOUWYtiYhWyW5VX8FQ61Y7gtg8rlZfGEALwOc5jaCxX4Ow3YPLzaRwxOJ:e/SY0/H4D+X0z1E1gdXrWy6GvEob
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  email-html-1.txt
- Size
  
  806B
- MD5
  
  efc80305a5bf1390a744fb3ba0972d66
- SHA1
  
  ffb585c62df7eced762980c55f694dac6e73218e
- SHA256
  
  c95105d51cd8b23015d9ddcb0a2e6347e947bd9731bd5b4b0230f7a4d2e63b53
- SHA512
  
  19616f0581ded2d09fe8b7c466d7994e76e40ac1d3bff6257eb6824987b7a9299cd8dc292c4b7faaf14b11b33ad5011052cb112cd12189ce948332465218e118
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4