769fe83a87f1e88cd86e3e8b8cab46bb0434f124390f3793a5219d9aa8239fb2 | Triage

Sharing

General

Target

769fe83a87f1e88cd86e3e8b8cab46bb0434f124390f3793a5219d9aa8239fb2
Size

117KB
Sample

221130-bt764aad21
MD5

bbdc54d5ae1e89f570e5af43d2a87ad5
SHA1

671ec2afbba5dc630c327ae326aa1c20055e3282
SHA256

769fe83a87f1e88cd86e3e8b8cab46bb0434f124390f3793a5219d9aa8239fb2
SHA512

7ae322155e9c041dea7130b23c29c1de0659180a312c2748c46e7d11081a3d90abb4cbeffadf48d3fc792a2736aef160f0509f705ce50ef5de162511aa26c9cb
SSDEEP

3072:MhlzbokTCegRnWsqSM9oUi5pzyD9z6xR2IxIZP8n7Ph1hSUwMwY0zrRjh:WtbBT1FsqSFl89zP

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  769fe83a87f1e88cd86e3e8b8cab46bb0434f124390f3793a5219d9aa8239fb2
- Size
  
  117KB
- MD5
  
  bbdc54d5ae1e89f570e5af43d2a87ad5
- SHA1
  
  671ec2afbba5dc630c327ae326aa1c20055e3282
- SHA256
  
  769fe83a87f1e88cd86e3e8b8cab46bb0434f124390f3793a5219d9aa8239fb2
- SHA512
  
  7ae322155e9c041dea7130b23c29c1de0659180a312c2748c46e7d11081a3d90abb4cbeffadf48d3fc792a2736aef160f0509f705ce50ef5de162511aa26c9cb
- SSDEEP
  
  3072:MhlzbokTCegRnWsqSM9oUi5pzyD9z6xR2IxIZP8n7Ph1hSUwMwY0zrRjh:WtbBT1FsqSFl89zP
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing