09694a835ff76c8294d4523a010313bf31b0221ae7496a425097246a36ea614f | Triage

Sharing

General

Target

EDD CA - Payment Delayed Notification.eml
Size

76KB
Sample

230403-vjld5ahg3z
MD5

1e57d84b405997247191d2521c797069
SHA1

42c14449ae7396a7a93781a6bf324df2d52c85cb
SHA256

09694a835ff76c8294d4523a010313bf31b0221ae7496a425097246a36ea614f
SHA512

11b1f90f2b4668d02e9384daa48aea669ec3e32e1e9d8a57aef444c2e49c8790248c61f773287aa7c5e6e2e91ffc0d5be96b57071c333499c23d1f05065a05e3
SSDEEP

1536:9i87jVCgj2Buz3qqEfufpkEa69dmgV4JwaDTbc3NwoRHqMwtwztjshlt:9d7MqdoyxdmZrjeJlWEtE

Score

6^/10

Malware Config

Targets

- Target
  
  EDD_CA_Form _02701220.html
- Size
  
  43KB
- MD5
  
  4313657954a8ea67e7623ee326f4c380
- SHA1
  
  e64b29dcce144168037a5dc110d3ecc4f24d7273
- SHA256
  
  ae73d68868298a76d8d12339a2befe7d071e4c9d46269172e12a0f54fc4f11c6
- SHA512
  
  fc1235a9f3d15d44f9c50295921f84c6c816235ddf5d4da74441f03055c174d22c731876e13b9429f7df57eb4d27889298eed85faeadf5450288f8c895c771be
- SSDEEP
  
  768:UVfBXqLio/9omkwkSJ6q1J6s7xfpUalrjBr:UVfRq7/9omkwkSJ6q1J6s7xfpUalrjBr
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2