7a852e520eb1aa5106939500970ef086fb34a38deb2e93ea1937f38c45ffa53c | Triage

Resubmissions

02/03/2023, 16:46

230302-t99c7sdd6x 1

02/03/2023, 16:42

230302-t7qs3sdg86 1

02/03/2023, 16:33

230302-t2rhesdg53 6

02/03/2023, 16:30

230302-tzx77adc9z 6

02/03/2023, 16:26

230302-txwatadc8x 6

Sharing

General

Target

Gomtec Video.eml
Size

13KB
Sample

230302-txwatadc8x
MD5

41963c58a81294966165e132ecbe5612
SHA1

b6bc5d380e390f9719f9c222009a0704b6d00411
SHA256

7a852e520eb1aa5106939500970ef086fb34a38deb2e93ea1937f38c45ffa53c
SHA512

ce06c5a404ca7fbc3b12ebc5b708e7529d2cf340d5361e99b8b9d35c8164455610726a917aa2fbb941b58ff87d89b2eef8777649538cbf1eb1a9c8d3312aebda
SSDEEP

192:swa0KjixFus9XIzyDAyY0J5x/eGir2d2NMDS1KiPFWNWp:g2taysWJD/eGib11v9uWp

Score

6^/10

collection

Malware Config

Targets

- Target
  
  Gomtec Video.eml
- Size
  
  13KB
- MD5
  
  41963c58a81294966165e132ecbe5612
- SHA1
  
  b6bc5d380e390f9719f9c222009a0704b6d00411
- SHA256
  
  7a852e520eb1aa5106939500970ef086fb34a38deb2e93ea1937f38c45ffa53c
- SHA512
  
  ce06c5a404ca7fbc3b12ebc5b708e7529d2cf340d5361e99b8b9d35c8164455610726a917aa2fbb941b58ff87d89b2eef8777649538cbf1eb1a9c8d3312aebda
- SSDEEP
  
  192:swa0KjixFus9XIzyDAyY0J5x/eGir2d2NMDS1KiPFWNWp:g2taysWJD/eGib11v9uWp
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  email-html-2.txt
- Size
  
  3KB
- MD5
  
  507ce082966e54c55e52eb340686e410
- SHA1
  
  610ecd14fbd86717474923cde678ae17ad6bed87
- SHA256
  
  9f68e7efeb4dd654e660f60f00cf5de29a6deec76a453e0d5b99184785c8f626
- SHA512
  
  b0bc40e7542bd10fc1b2549cba9d7ed2d7aa9fd7fa423c440f7d2b65192a0e8a71c17e4aae497c71952333a591afc405d0e6305553c8c6cf4b3fb7cbae1d5150
Score

1^/10
behavioral3 behavioral4
- Target
  
  email-plain-1.txt
- Size
  
  1KB
- MD5
  
  e7cfc7aaf3d536dd6b0e79c712c247b6
- SHA1
  
  a7297358407015e72dc070758b3d01f585569532
- SHA256
  
  2c540b800eb493bcd00c2cb96fb854362c769b0d4ccd95d5ca626509b606c3d9
- SHA512
  
  70aa056d8693c5d12c6ebf736e60f26b5a574405880f1fa285da800a668567d18bd6fdbd1303c76fb9898bb7159b96e1cab6ed4f7e17e117f7c422e8dda1035c
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6