aa4046ab8b9a2566c1a35d827ed97ce8f15e0254727d270807505f47d53aaeff | Triage

Sharing

General

Target

2fffb9e3cef7f3b779884b4d690137c10b266b56
Size

34KB
Sample

230201-qapb7sfc6z
MD5

b28805a91c77bd56fb47307477c522f8
SHA1

2fffb9e3cef7f3b779884b4d690137c10b266b56
SHA256

aa4046ab8b9a2566c1a35d827ed97ce8f15e0254727d270807505f47d53aaeff
SHA512

c2b602132cd28cdae70d9e03609b23d27f90eb094857caeb0740b56196ae28bbd9982f864f81e145b362a4fea2379e18f21b3f94cd529363ea4a2a536eadad51
SSDEEP

384:kOhNuCCfNNrQKvPWXwEwZhI6hlhxggKWJUw34KljAAlGOBN3z7E7H96vEPnKvFU8:kOWNrrWXnohVxKWaihMbKW+k2RH

Score

7^/10

collection

Malware Config

Targets

- Target
  
  2fffb9e3cef7f3b779884b4d690137c10b266b56
- Size
  
  34KB
- MD5
  
  b28805a91c77bd56fb47307477c522f8
- SHA1
  
  2fffb9e3cef7f3b779884b4d690137c10b266b56
- SHA256
  
  aa4046ab8b9a2566c1a35d827ed97ce8f15e0254727d270807505f47d53aaeff
- SHA512
  
  c2b602132cd28cdae70d9e03609b23d27f90eb094857caeb0740b56196ae28bbd9982f864f81e145b362a4fea2379e18f21b3f94cd529363ea4a2a536eadad51
- SSDEEP
  
  384:kOhNuCCfNNrQKvPWXwEwZhI6hlhxggKWJUw34KljAAlGOBN3z7E7H96vEPnKvFU8:kOWNrrWXnohVxKWaihMbKW+k2RH
Score

7^/10

collection
- Uses the VBS compiler for execution
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2