d9548ec882052a5b1d26cb5759a0d47f2fdd26c4de76caa0d81da7e392fb9660 | Triage

Sharing

General

Target

5b9b4c64-2188-889e-bda4-e78302085020.eml
Size

30KB
Sample

230213-fnzpzsba32
MD5

9ed6608d524c5053ab58478ab5185093
SHA1

c85c1f86ca691c0611fd84f1bc0c444a79bb7f23
SHA256

d9548ec882052a5b1d26cb5759a0d47f2fdd26c4de76caa0d81da7e392fb9660
SHA512

9c2ef9f62c05fb8c86016d0a381d970955d01fe2fb5bbc3156a48930231dee9a368e176c4c20b9353f852ec93cb55af8f7bc758870217168e482bc01cc90a59c
SSDEEP

768:bMtic2VgRrUP2j2Y5AFb5zVGPertm4jsiLwL1zOk+0+++++EdELO4RTNNNNcNOPe:bMtic2V8UP2/KFb5zVGPertm4jsiLwL5

Score

6^/10

collection

Malware Config

Targets

- Target
  
  5b9b4c64-2188-889e-bda4-e78302085020.eml
- Size
  
  30KB
- MD5
  
  9ed6608d524c5053ab58478ab5185093
- SHA1
  
  c85c1f86ca691c0611fd84f1bc0c444a79bb7f23
- SHA256
  
  d9548ec882052a5b1d26cb5759a0d47f2fdd26c4de76caa0d81da7e392fb9660
- SHA512
  
  9c2ef9f62c05fb8c86016d0a381d970955d01fe2fb5bbc3156a48930231dee9a368e176c4c20b9353f852ec93cb55af8f7bc758870217168e482bc01cc90a59c
- SSDEEP
  
  768:bMtic2VgRrUP2j2Y5AFb5zVGPertm4jsiLwL1zOk+0+++++EdELO4RTNNNNcNOPe:bMtic2V8UP2/KFb5zVGPertm4jsiLwL5
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  =?UTF-8?B?SW52K0JsLnNodG0=?=
- Size
  
  3KB
- MD5
  
  02ebb0c7f4c8b80f3c1930a6bff451bd
- SHA1
  
  faf50e8022de2316ef4b223fe7d458005a850674
- SHA256
  
  aa06709068d24029bfc846262ba41e34778047a57db674dfea46185e2b5ae5c8
- SHA512
  
  09012f02804677a33532983acd84f45ee1c3e7dfd640e091368c9907ae321e8c1f661db65f7a2c761b26c8d4f85bf210b7642bc9ba7c170c016b342a3f6857a5
Score

1^/10
behavioral3 behavioral4
- Target
  
  attachment-2
- Size
  
  43B
- MD5
  
  ebd4c7248ac9be0c41d02060e3430a5d
- SHA1
  
  eabc59bee6a7ff007a1dfc3da3b5493143c0d087
- SHA256
  
  e1da5cd02d74bb5ba944e3ce44037860ac9f42392eec6c99b9543910e1a3a5fe
- SHA512
  
  0f3b6529892aff05bbddc7614faca83f3651f4b14c107853d2cd502391c35f5e26a41af31b5503d68c77264cda24f616aa9f9655fe8a79e975090365ac38ea71
Score

1^/10
behavioral5 behavioral6
- Target
  
  email-html-1.txt
- Size
  
  12KB
- MD5
  
  dd6251b84dc327b08ccf57b1b0509f50
- SHA1
  
  905773065cb5496f2541092fe4f9132ce7608061
- SHA256
  
  eda96ea3c5212a701021ff4a0294520395e5a9cbc75f5fdef93b2fc4a80fa323
- SHA512
  
  a51b86db89b67a0d0cbc6e76f42c4abb8d95eff319dad3202ce71306d72ac1167a90a2d7ba9c9590092eb1b3532e71558b9502184b0e3526a421d4ff7ea6a63d
- SSDEEP
  
  384:7GvzqgTwPqGyE7hEiLNHkdaO9/CYdddddv72Lw4Fffff4+kW:7GvzLwPRyE7hEiLNHkdaaCYdddddv72p
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8