0d3beb58f15af3a4abedba3168d23316e8726b39bd880ba26491c47957698a76 | Triage

Sharing

General

Target

0d3beb58f15af3a4abedba3168d23316e8726b39bd880ba26491c47957698a76
Size

96KB
Sample

221129-qg27mseg7s
MD5

219cf6c5f32106087026369124f468a3
SHA1

ec1179bfd576759fe7f58789ed2e8f04acbba048
SHA256

0d3beb58f15af3a4abedba3168d23316e8726b39bd880ba26491c47957698a76
SHA512

d3fa42ec8ee03902f7d90933f25a58873ca61b880b14c791648641fba6f4505107fe7efd072f4d19a6f0baf8e5f97ec90105873e52cdb8147c65f5d9b0b0f8dc
SSDEEP

1536:m9J/ZwqdK8afWAEMHXGRHW6yUQ2GDwgUFdAv0UzQca8pw:Y/ZhdAJAHWcxqw6m3

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  0d3beb58f15af3a4abedba3168d23316e8726b39bd880ba26491c47957698a76
- Size
  
  96KB
- MD5
  
  219cf6c5f32106087026369124f468a3
- SHA1
  
  ec1179bfd576759fe7f58789ed2e8f04acbba048
- SHA256
  
  0d3beb58f15af3a4abedba3168d23316e8726b39bd880ba26491c47957698a76
- SHA512
  
  d3fa42ec8ee03902f7d90933f25a58873ca61b880b14c791648641fba6f4505107fe7efd072f4d19a6f0baf8e5f97ec90105873e52cdb8147c65f5d9b0b0f8dc
- SSDEEP
  
  1536:m9J/ZwqdK8afWAEMHXGRHW6yUQ2GDwgUFdAv0UzQca8pw:Y/ZhdAJAHWcxqw6m3
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing