f7b597b4d2c68124abfc980046155560eeae1e64f30e61e9b9f6ff8fb278c27d | Triage

Sharing

General

Target

f7b597b4d2c68124abfc980046155560eeae1e64f30e61e9b9f6ff8fb278c27d
Size

59KB
Sample

221201-tfvyqaea96
MD5

688a418983d16adbd5a7976bc97e81c8
SHA1

be4e47bcd4c960b93a3a28e5db023216374d66fb
SHA256

f7b597b4d2c68124abfc980046155560eeae1e64f30e61e9b9f6ff8fb278c27d
SHA512

c5b9dde81664bdc37202bf5ab2c19885ce7890adaaa75912f48e0a1834fb12c1f56571163670d3fb7368ac8b237696f44ad3b94c8bc8270255cd0bdc9d4f0c45
SSDEEP

768:WEgdSgKVhDxRwxFhD15F2ajRwuDPIR6ABxfO6AdOfgOK3QsQ/fvFMxEhsI:BISdXxRwn32ajRPA7nm6AgFGQHKWhX

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  f7b597b4d2c68124abfc980046155560eeae1e64f30e61e9b9f6ff8fb278c27d
- Size
  
  59KB
- MD5
  
  688a418983d16adbd5a7976bc97e81c8
- SHA1
  
  be4e47bcd4c960b93a3a28e5db023216374d66fb
- SHA256
  
  f7b597b4d2c68124abfc980046155560eeae1e64f30e61e9b9f6ff8fb278c27d
- SHA512
  
  c5b9dde81664bdc37202bf5ab2c19885ce7890adaaa75912f48e0a1834fb12c1f56571163670d3fb7368ac8b237696f44ad3b94c8bc8270255cd0bdc9d4f0c45
- SSDEEP
  
  768:WEgdSgKVhDxRwxFhD15F2ajRwuDPIR6ABxfO6AdOfgOK3QsQ/fvFMxEhsI:BISdXxRwn32ajRPA7nm6AgFGQHKWhX
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing