Overview

overview

7

Static

static

1

ATT89547.html

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ATT89547.hTmL

  • Size

    6KB

  • Sample

    230208-pv99qsag64

  • MD5

    0e0a48434dcf803f3d13ce994a865a7b

  • SHA1

    6b736bc92dbe777e91ce534d9b0952ec81bbd247

  • SHA256

    a5ed81d3111a99bd892dddb24ccaa4c6ad183f813532ff93a875c663aaadb96b

  • SHA512

    2edf4c1277d2a767be708f515f3babd41d1617e715c48bb0e539b334e2bd57b11374b377109834a2b580d293968c1aced0e116f2884faf68cbc527ddf51a3374

  • SSDEEP

    192:XZ+vcemEHY5sCU0J4NODne/BlsAEFIOVc1d:XZpTEHYKEJ40DnuBlbEFryd

Score
7/10
microsoftphishing

Malware Config

Targets

    • Target

      ATT89547.hTmL

    • Size

      6KB

    • MD5

      0e0a48434dcf803f3d13ce994a865a7b

    • SHA1

      6b736bc92dbe777e91ce534d9b0952ec81bbd247

    • SHA256

      a5ed81d3111a99bd892dddb24ccaa4c6ad183f813532ff93a875c663aaadb96b

    • SHA512

      2edf4c1277d2a767be708f515f3babd41d1617e715c48bb0e539b334e2bd57b11374b377109834a2b580d293968c1aced0e116f2884faf68cbc527ddf51a3374

    • SSDEEP

      192:XZ+vcemEHY5sCU0J4NODne/BlsAEFIOVc1d:XZpTEHYKEJ40DnuBlbEFryd

    Score
    7/10
    microsoftphishing

    • Executes dropped EXE

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks