a4f7d62594a21be103f1f08a9c8b22e7e3f8a91835dfc18d81b36ad70c2bc8d0 | Triage

Sharing

General

Target

Geek Squad Security Services.msg
Size

1.4MB
Sample

221129-vzml5ada3y
MD5

b5bb9496599e31a8f3eb37b6e014f1ba
SHA1

9a45b90e6dcc0ddd664cac8f5555ef6782b39e26
SHA256

a4f7d62594a21be103f1f08a9c8b22e7e3f8a91835dfc18d81b36ad70c2bc8d0
SHA512

8128e4c53671e3182548946a9b6c81180579ffbf8702144ee0ddba43b7830fb0b4d7eaf0c25999e96600c7536ede47f2c38a3797423055d71496c015b7af4c8a
SSDEEP

24576:cV/yEl7qrraXbC5JnkWBZAveZg3aFCnP/E:O/FluraLCjk+QeU3

Score

6^/10

collection

Malware Config

Targets

- Target
  
  Geek Squad Security Services.msg
- Size
  
  1.4MB
- MD5
  
  b5bb9496599e31a8f3eb37b6e014f1ba
- SHA1
  
  9a45b90e6dcc0ddd664cac8f5555ef6782b39e26
- SHA256
  
  a4f7d62594a21be103f1f08a9c8b22e7e3f8a91835dfc18d81b36ad70c2bc8d0
- SHA512
  
  8128e4c53671e3182548946a9b6c81180579ffbf8702144ee0ddba43b7830fb0b4d7eaf0c25999e96600c7536ede47f2c38a3797423055d71496c015b7af4c8a
- SSDEEP
  
  24576:cV/yEl7qrraXbC5JnkWBZAveZg3aFCnP/E:O/FluraLCjk+QeU3
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  Geek Squad 941025651.jpg
- Size
  
  1.3MB
- MD5
  
  17195aafd7769c4618a2b04e3be17e90
- SHA1
  
  e3e095db5495947ec3459c179b30570f70fc0dc5
- SHA256
  
  3ccbf73e9127f6d3fd281f8401e8926285ed2ce86c8c02af7e7d92abdb81dc62
- SHA512
  
  7ee13d629c286a2ccd080e714fa08328beb590d9f20f9419ea1ec7ec0e39d9f5931176199db5787df8c40924833bd190f5912ed6114e9c511c0be8997f7c406d
- SSDEEP
  
  24576:c/yEl7qrraXbC5JnkWBZAveZg3aFCnP/Ea:c/FluraLCjk+QeU3N
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4