Static task
static1
Behavioral task
behavioral1
Sample
3_8ffe3a68-f15e-442e-f308-08db1faa5f31__micheledaddetta88@outlook_it_() 3_11_2023 5_15_56 PM.msg
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
3_8ffe3a68-f15e-442e-f308-08db1faa5f31__micheledaddetta88@outlook_it_() 3_11_2023 5_15_56 PM.msg
Resource
win10v2004-20230220-en
windows10-2004-x64
General
-
Target
3_8ffe3a68-f15e-442e-f308-08db1faa5f31__micheledaddetta88@outlook_it_() 3_11_2023 5_15_56 PM.msg
-
Size
8.2MB
-
MD5
c16b9eb370ca648df72d2ae20d500c2a
-
SHA1
532a4e02fa60f3a2a26e54a51d2032aef9c1c1e1
-
SHA256
be1f3e44cc6c8d6adaa812b57763ec3a6c3e4fb7cc2e7cf600c15bc1a451af38
-
SHA512
52139c886e1eff10b14b20e72761eadf307b2bb84e06cb1d906710a04a64baeb359ef5303c0d2f6b00a4c4ba94df20d0f08948eb2dec6daad12c268bdd7a9b1f
-
SSDEEP
196608:23UVA6vh+CWl23PCgCOvUeypOcl7WISTllqqQKhRJEnEo3XWlhhS0eJmNZ7CU0C:2/6YgCOseypillqqQK+n1HWHhS/A7t
Malware Config
Signatures
Files
-
3_8ffe3a68-f15e-442e-f308-08db1faa5f31__micheledaddetta88@outlook_it_() 3_11_2023 5_15_56 PM.msg.msg
-
http://1000ut.hu
-
http://3ecpa.com
-
http://AM0EUR02FT055.eop-EUR02.prod.protection.outlook.com
-
http://AM0EUR02FT055.mail.protection.outlook.com
-
http://AM6P192CA0044.outlook.office365.com
-
http://AS8PR07MB9545.eurprd07.prod.outlook.com
-
http://DBAPR07MB6983.eurprd07.prod.outlook.com
-
http://EUR01-DB5-obe.outbound.protection.outlook.com
-
http://aboutyou.it
-
http://accessni.gov.uk
-
http://ada.lt
-
http://adriyatik.com
-
http://aepd.es
-
http://aero-alliance.ru
-
http://aki.ee
-
http://aksima.ru
-
http://altia.ee
-
http://altia.lv
-
http://altiadenmark.com
-
http://amcoss.com
-
http://americandancefestival.org
-
http://amid.kz
-
http://amnesty.org
-
http://amrop.com
-
http://amrop.lv
-
http://anomalien.com
-
http://anora.com
-
http://apd-gba.be
-
http://arcus.no
-
http://arhivi.gov.lv
-
http://army.mil
-
http://atlascopco.com
-
http://avba.co.il
-
http://aviadepartament.com
-
http://azop.hr
-
http://baltfin.lv
-
http://bausch.com
-
http://bausch.com.tr
-
http://belavia.by
-
http://bfdi.bund.de
-
http://bgs.aero
-
http://bpctravel.lt
-
http://bridgewest.eu
-
http://britannicanis.com
-
http://caa.com
-
http://cambridge.org
-
http://cepa.org
-
http://ch-aviation.com
-
http://civicus.org
-
http://cma-cgm.com
-
http://cnpd.lu
-
http://cnpd.pt
-
http://communities-ni.gov.uk
-
http://concord.kz
-
http://cpdp.bg
-
http://cytanet.com.cy
-
http://da-travel.ru
-
http://daera-ni.gov.uk
-
http://dataprotection.gov.cy
-
http://dataprotection.ie
-
http://dataprotection.ro
-
http://datatilsynet.dk
-
http://datatilsynet.no
-
http://datenschutz-bayern.de
-
http://degruyter.com
-
http://diarrablu.com
-
http://domain.com
-
http://downtowngreensboro.org
-
http://dpa.gr
-
http://dpa.is
-
http://dsb.gv.at
-
http://dvi.gov.lv
-
http://economy-ni.gov.uk
-
http://edpb.europa.eu
-
http://edps.europa.eu
-
http://ellaandil.com
-
http://ellyr.dk
-
http://example.com
-
http://federfarma.it
-
http://fidh.org
-
http://finance-ni.gov.uk
-
http://flaka.ismaili
-
http://flystar.aero
-
http://forum-asia.org
-
http://gabriel-scott.com
-
http://gbst.com.tw
-
http://global.corp.sap
-
http://gmail.com
-
http://gpdp.it
-
http://greensock.com
-
http://handling.md
-
http://higgsbosonsystems.com
-
http://hrw.org
-
http://hscni.net
-
https://assetsnffrgf-a.akamaihd.net/assets/m/1102023385/univ/art/1102023385_univ_cnt_2_xl.jpg
-
https://assetsnffrgf-a.akamaihd.net/assets/m/1102023385/univ/art/1102023385_univ_cnt_3_xl.jpg
-
https://permalink.jw-api.org/meeting-search/E
-
https://permalink.jw-api.org/memorial-search/E
-
https://security.microsoft.com/userSubmissionsReportMessage
-
https://www.jw.org/en/jehovahs-witnesses/faq/lords-supper/
-
https://www.jw.org/en/library/bible/study-bible/books/1-timothy/2/#v54002009
-
https://www.jw.org/en/library/bible/study-bible/books/luke/22/#v42022019
-
http://iata.org
-
http://ic.iem.gov.lv
-
http://idniyra.eu
-
http://idpc.info
-
http://idpc.org.mt
-
http://imy.se
-
http://inbox.lv
-
http://infosys.com
-
http://infrastructure-ni.gov.uk
-
http://inthing.io
-
http://ip-rs.si
-
http://jaydenp.com
-
http://josiahventure.com
-
http://junk.aviasg.com
-
http://kam.cz
-
http://kgdavia.ru
-
http://km.gov.lv
-
http://kundservice.se
-
http://lagence.com
-
http://lisasaysgah.com
-
http://llv.li
-
http://lpsni.gov.uk
-
http://lrpv.gov.lv
-
http://lu.lv
-
http://lzp.gov.lv
-
http://mail-db5eur01olkn2062.outbound.protection.outlook.com
-
http://mail.aviasg.com
-
http://mail.ru
-
http://main-header.et
-
http://mdc-europe.com
-
http://melodyehsani.com
-
http://mfa.no
-
http://mmlafleur.com
-
http://mn2s.com
-
http://mncne.nato.int
-
http://myqide.com
-
http://n-ix.com
-
http://naih.hu
-
http://niapr.com
-
http://niaurban.com
-
http://nicole.schwarz
-
http://nidirect.gov.uk
-
http://nissa.gsi.gov.uk
-
http://om.fi
-
http://omct.org
-
http://outlook.it
-
http://pdp.gov.sk
-
http://pgeu.eu
-
http://planningresponse.team
-
http://protection.outlook.com
-
http://ptac.gov.lv
-
http://purplepr.com
-
http://pvd.gov.lv
-
http://reina-tour.ru
-
http://sap.com
-
http://savills.com
-
http://shoandco.com
-
http://skyland.su
-
http://slc.co.uk
-
http://slek.sk
-
http://sofiture.lv
-
http://sps-international.com
-
http://state.gov
-
http://svo.aero
-
http://sygnia.co
-
http://telko.com
-
http://thefactfile.org
-
http://thelondonstory.org
-
http://tm.gov.lv
-
http://trade.force.com
-
http://trendstop.be
-
http://u4global.com
-
http://ufanet.ru
-
http://un.org
-
http://uodo.gov.pl
-
http://uoou.cz
-
http://vakalat.com
-
http://vdi.gov.lv
-
http://vectura.no
-
http://vi.gov.lv
-
http://vingruppen.no
-
http://vingruppen.se
-
http://visareservation.com
-
http://weqtechnologies.com
-
http://who.int
-
http://wmg.com
-
http://worldstarhiphop.com
-
http://y-k.ru
-
http://yahoo.com
-
http://your.name
-
http://youremail.com
- Show all
-
-
image001.jpg.jpg