af989398e6b27e327cd73f440824fde463b65b465c4944e669bb845e2aa61a06 | Triage

Sharing

General

Target

Anita Bedford Order ID #MN1531347769 .msg
Size

286KB
Sample

221129-v5y74sdf2s
MD5

8bba9d4a00ad6bb435b225bafb991eed
SHA1

8f11a5bab4e9583f490313868e241f13880c8a4a
SHA256

af989398e6b27e327cd73f440824fde463b65b465c4944e669bb845e2aa61a06
SHA512

949e9449cbbcd7eb461bd43d96e2777535ff6be10f24d7093a64743270fc9e33f50437ef1b35c7c8efc23a11b13486f4baacf2d73863fbd6572d1f42c3efce4b
SSDEEP

6144:JYFMuVfBP+2xNG88HTUI+NNpwRkZjiGM+oV/TNcH/:Jd2xNx8HTUISNuR6gi

Score

6^/10

collection

Malware Config

Targets

- Target
  
  Anita Bedford Order ID #MN1531347769 .msg
- Size
  
  286KB
- MD5
  
  8bba9d4a00ad6bb435b225bafb991eed
- SHA1
  
  8f11a5bab4e9583f490313868e241f13880c8a4a
- SHA256
  
  af989398e6b27e327cd73f440824fde463b65b465c4944e669bb845e2aa61a06
- SHA512
  
  949e9449cbbcd7eb461bd43d96e2777535ff6be10f24d7093a64743270fc9e33f50437ef1b35c7c8efc23a11b13486f4baacf2d73863fbd6572d1f42c3efce4b
- SSDEEP
  
  6144:JYFMuVfBP+2xNG88HTUI+NNpwRkZjiGM+oV/TNcH/:Jd2xNx8HTUISNuR6gi
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  Invoice #1.pdf
- Size
  
  210KB
- MD5
  
  b20f8068a78fad4767721c1526320843
- SHA1
  
  cc7ed9fb371641d1978ea2a35837e276e108c6c1
- SHA256
  
  4155c6735129537d70116e19e9258b36fedb95278c496d0b8d406f4b5540816d
- SHA512
  
  647c25615bd90efd5409532c222a1a4e6b2bef81e6110f784c3f71a5d81be1adce1cab562bdd23f3c546a5c5227bf8b74763d5ee87043292753f35175e28f350
- SSDEEP
  
  6144:P2xNG88HTUI+NNpwRkZjiGM+oV/TNcH/t:P2xNx8HTUISNuR6giF
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4