Overview

overview

6

Static

static

5af9c6a0-f...e67.gz

windows7-x64

3

5af9c6a0-f...e67.gz

windows10-2004-x64

3

sample.eml

windows7-x64

6

sample.eml

windows10-2004-x64

3

attachment-1.tnef

windows7-x64

3

attachment-1.tnef

windows10-2004-x64

3

Malware Al...xt.txt

windows7-x64

1

Malware Al...xt.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5af9c6a0-f899-4124-de70-08dad23c8e67

  • Size

    8KB

  • Sample

    221129-yz29csfe5x

  • MD5

    c72f0718ad0ef493aa6fa2d8a99ba9db

  • SHA1

    4efd889ca8aae103aa7f0e5c6b06862c203251ff

  • SHA256

    7974252b4b71bf7d723292f95b8d07e5044efd45225e53c8d1b205f6ccd0bc8b

  • SHA512

    a3601dad046873dfd8050550f6c1e18b9b9e72ac86695af3ec5e48bbe4ada27c6487890ff0cead464ab0a038a2156898392e085742ec98f1e011a2f3f1cba918

  • SSDEEP

    192:82lgQaJWq+YRDho0AOdF2eLKiBvrhCVyGt+jPRCCzuTE:82gQaJWFYRDRdFxBvrhCyGWYCzX

Score
6/10
collection

Malware Config

Targets

    • Target

      5af9c6a0-f899-4124-de70-08dad23c8e67

    • Size

      8KB

    • MD5

      c72f0718ad0ef493aa6fa2d8a99ba9db

    • SHA1

      4efd889ca8aae103aa7f0e5c6b06862c203251ff

    • SHA256

      7974252b4b71bf7d723292f95b8d07e5044efd45225e53c8d1b205f6ccd0bc8b

    • SHA512

      a3601dad046873dfd8050550f6c1e18b9b9e72ac86695af3ec5e48bbe4ada27c6487890ff0cead464ab0a038a2156898392e085742ec98f1e011a2f3f1cba918

    • SSDEEP

      192:82lgQaJWq+YRDho0AOdF2eLKiBvrhCVyGt+jPRCCzuTE:82gQaJWFYRDRdFxBvrhCyGWYCzX

    Score
    3/10
    behavioral1behavioral2

    • Target

      sample

    • Size

      21KB

    • MD5

      898c1dab10650d0a7c949fcc923739c0

    • SHA1

      f73e18854bb6d57a0c4117acdbefb5c4bbbf030f

    • SHA256

      f795677b051acc6fa00db8c0fb626794d503011cf20391e3cef3b2deb8784fb9

    • SHA512

      413f5958801cb4c286dd2ce21e76799f5bff18bfebad6ae07236e33a502d551e786b2b3f33bf65caaa6191c912431c6010c6335148d8e645499e8092e80a6855

    • SSDEEP

      384:3OsDoC2d0ZjY5nOu5taAYTxAEbKVPbt8Y74A6rcR5sjznUQ:3n+2BDu5taAqxA/hd756rcRajznx

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral3behavioral4

    • Target

      attachment-1

    • Size

      2KB

    • MD5

      9fb6c061f91fa05246af6af63e588e38

    • SHA1

      31d01e74a4346149b66685793311038d4050d695

    • SHA256

      1924d39d08512972c34ca46b76ab5b5e1349e5783670b1c4fce32e06998f6705

    • SHA512

      e0e269f85d481ea27aad204f7f1224d22e967c28e5f52e81cd3a924a8a3eb0a68777b22bd450d07cfaf99db29f3dd2e02f2334ce06d61570d99379159528e32c

    Score
    3/10
    behavioral5behavioral6

    • Target

      Malware Alert Text.txt

    • Size

      210B

    • MD5

      4e55940d200a00031e94f5f270219485

    • SHA1

      31d9d68c919580d0ea0161256ef7f46e904f09b8

    • SHA256

      908cb424e94048f144aecf7451543a8ceefb20b8290be6a7666c2f360dc692e5

    • SHA512

      cc2cbe2d4e7952f08930cc7a33d08946f235e178f704293ede85e66da6a99744f9cb4e5ec3341169f3bc705fd3e420fae880e748888ba059ea5d37cb82aea4a5

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

3
T1082

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks