Overview

overview

10

Static

static

8

PhotoshopE....0.exe

windows7-x64

8

PhotoshopE....0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Adobe Photoshop Elements.rar

  • Size

    6.7MB

  • Sample

    221217-pb2s9agf42

  • MD5

    9639439325c5881ad6bde80658b253a6

  • SHA1

    b5e3d4551c27b72fedeca449c377d45b5d249461

  • SHA256

    88a0f31ad2339a7eca80af7150fc91076a6c7a3e44e3651c0173e200855fb9ff

  • SHA512

    99062579cd5d71328410225715c2875c4872ce74952de5ddc2c6c64754780b5ddd2be39ae3d846e4d17df8c12d09cc0ab95a352f8d4ff2aab07b0bf709da5ad9

  • SSDEEP

    196608:vJVq7zkegbZzO1uPm45nA3Xs8BRA4W6HQKqdiTd:B8/kPzkXfBCcTd

Score
10/10
adobephishingupx

Malware Config

Targets

    • Target

      PhotoshopElements_2022_LS30_win64-20.0.exe

    • Size

      7.0MB

    • MD5

      63bbd35d120650a6502f8101c0e796fb

    • SHA1

      2214201d094e8d4192d8ae8271240c64da5e7940

    • SHA256

      9cacc2aaf3ca95c6a9eb1e7a14e69d08fb564e1c490a767a925d75bd4adee5c6

    • SHA512

      accb40f15ad4901f90535ade90e7a6b1296e5571b249b93b30ff1468a4091aa54a91728c6a932fafa4aef4f5fd7975409d656796b601a9a4614dd53421838acb

    • SSDEEP

      196608:94Gpm7m3Wp8ayFmwwZIBXZbum1iIW0I2kr5gOX/fuB68dyAzmwCXUIfmYM1:94L7m6LZ2XZb1ip3r5gOXLAyw0fjS

    Score
    10/10
    upxadobephishing

    • Detected adobe phishing page

      phishingadobe

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks