Overview

overview

6

Static

static

3822C08E15...14.msg

windows7-x64

6

3822C08E15...14.msg

windows10-2004-x64

3

image002.png

windows7-x64

3

image002.png

windows10-2004-x64

3

image005.png

windows7-x64

3

image005.png

windows10-2004-x64

3

image006.png

windows7-x64

3

image006.png

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3822C08E1584FCF3725BAD8CECE32F7AB0B2CE4031CE08CB9E4EF5EB3D22A714.msg

  • Size

    161KB

  • Sample

    230125-nzqkfsfh56

  • MD5

    283f9cdf6c0dcc4f830a88dc1de81763

  • SHA1

    70a42ecb5aa2609f853bd5e7aab55142c9689e36

  • SHA256

    3822c08e1584fcf3725bad8cece32f7ab0b2ce4031ce08cb9e4ef5eb3d22a714

  • SHA512

    b9711df8ebd42d7a78bed8585b001895a3af975d5aeab0978e46215c43f2a3dc04b535e6b9d6988f65d7a8710a1ec816d504fb2b3c464b39a53aa248fcb2c034

  • SSDEEP

    3072:zi56wl/Q7GHzLHB97FKLXUcEMIv3XUq8VE3t4TGmtg65Yryxy:Rq/Q7GHzLh97oLXUN3XUq8VE947tg65

Score
6/10
collection

Malware Config

Targets

    • Target

      3822C08E1584FCF3725BAD8CECE32F7AB0B2CE4031CE08CB9E4EF5EB3D22A714.msg

    • Size

      161KB

    • MD5

      283f9cdf6c0dcc4f830a88dc1de81763

    • SHA1

      70a42ecb5aa2609f853bd5e7aab55142c9689e36

    • SHA256

      3822c08e1584fcf3725bad8cece32f7ab0b2ce4031ce08cb9e4ef5eb3d22a714

    • SHA512

      b9711df8ebd42d7a78bed8585b001895a3af975d5aeab0978e46215c43f2a3dc04b535e6b9d6988f65d7a8710a1ec816d504fb2b3c464b39a53aa248fcb2c034

    • SSDEEP

      3072:zi56wl/Q7GHzLHB97FKLXUcEMIv3XUq8VE3t4TGmtg65Yryxy:Rq/Q7GHzLh97oLXUN3XUq8VE947tg65

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      image002.png

    • Size

      2KB

    • MD5

      4cccf7033029b4dfbebbee35c1418727

    • SHA1

      369e9919429fdc9265f082e57095b399d1c12bcd

    • SHA256

      0050ddfa854599f6adc2e7a730a71474a727d8cff31b5e6e5076815ae204ca2e

    • SHA512

      b73f66354f91e5f448ca9b7e91876611ab9ec1c39bb427b3c516a204d7ba98cedabb36ab83c533bb349091a603d380d04b68741ef1baf1d73c930183e9fd203e

    Score
    3/10
    behavioral3behavioral4

    • Target

      image005.png

    • Size

      16KB

    • MD5

      e2ba0ff53b131a4021305fe1fb180b64

    • SHA1

      e1bc83057d3cd25ae7fbf8f04c02c266cbb134eb

    • SHA256

      e77b875878cb422861e96c86ae5ad5737824a5cb626500467f33f2e02e662154

    • SHA512

      288d6ce179a465981d9f286b3ab0348e97aa99b17e2032105aae04e0878f311400006b13a077d4e9f78bd51aa4fc99794ba9ff9bdb1868a72565a9829c3b7ee6

    • SSDEEP

      384:OWgPDpOMBOQLLUWgJ4vq45/gojGe1SaBzDgo6lXaIEQ:OWgtvAXPyS4tgojb1Sahgouay

    Score
    3/10
    behavioral5behavioral6

    • Target

      image006.png

    • Size

      3KB

    • MD5

      fe7fe2033e1ad5046f5ed2082321e1ab

    • SHA1

      0355577dab128e87ef8b4cc567c4499d2968e2b2

    • SHA256

      8dbdc3815fb58b33d0e068fd2f5cdd8e858a08d9b8f9386bcc0c4a7a7b2f14c9

    • SHA512

      3fc1ecd819992471d77643fd271acceb6b5df3977833d1480c0356712256d0b6050c28b0092bb8f10cf1223aa3876f8e4eebdac6adb5c04ff3c6d8d086530657

    Score
    3/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

4
T1082

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks