6301e422f164b589d8a67aa7d69c46e9de3493c5684f7beb0b9c56366b89d3bd | Triage

Resubmissions

15-05-2023 23:03

230515-21xbaaae68 5

Sharing

General

Target

Fwd- SOSPECHOSO-FW- Updated March Financials.eml
Size

94KB
Sample

230515-21xbaaae68
MD5

b7d5a543fb03d0891fa0d9da075de401
SHA1

0588a4e6e3f679fb3a3e5600605b770193d6eccc
SHA256

6301e422f164b589d8a67aa7d69c46e9de3493c5684f7beb0b9c56366b89d3bd
SHA512

d93e9c099634856477053a8b0c6173c5b4a744f4cf26dd7ffe548894ae4cc24bd5aacf9e12cc47ff27ece1a669d62231aaea83c6d7d8c4979396738fb69e88b0
SSDEEP

1536:dGDKAPu0AGQs9uMZ+MFKGNTgX4yhqlTvcHHk1WomRmn1GX6h9Vjleb4fReOUoQkg:dwWTm9ZdN2q5vek1d1GXG9py4fhU3aFo

Score

5^/10

Malware Config

Targets

- Target
  
  Fwd- SOSPECHOSO-FW- Updated March Financials.eml
- Size
  
  94KB
- MD5
  
  b7d5a543fb03d0891fa0d9da075de401
- SHA1
  
  0588a4e6e3f679fb3a3e5600605b770193d6eccc
- SHA256
  
  6301e422f164b589d8a67aa7d69c46e9de3493c5684f7beb0b9c56366b89d3bd
- SHA512
  
  d93e9c099634856477053a8b0c6173c5b4a744f4cf26dd7ffe548894ae4cc24bd5aacf9e12cc47ff27ece1a669d62231aaea83c6d7d8c4979396738fb69e88b0
- SSDEEP
  
  1536:dGDKAPu0AGQs9uMZ+MFKGNTgX4yhqlTvcHHk1WomRmn1GX6h9Vjleb4fReOUoQkg:dwWTm9ZdN2q5vek1d1GXG9py4fhU3aFo
Score

5^/10
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  d3ce847f17874b0b6676df0b8cfa1067.png
- Size
  
  57KB
- MD5
  
  593171f6d0506e0761c734383e382fb1
- SHA1
  
  3213f30a67ee0b0995d26ae64c9e05a24cd71c78
- SHA256
  
  88204169ae76372f880afd6f8b484af3c65ef3eef71ad859a926d1d25769aad9
- SHA512
  
  8f3b9beec5fd130495faaff2d135c0c400ae6842871bcf27c98f2c2199746cdccc52dfec02d4e1a903b9ea0f1ee9a293310a8f67a70c60fc4ceb656e5c15b06d
- SSDEEP
  
  1536:Fyg4GTEWdg+fN+sD2K+0TQhVefLA9OQk9u:Mg4GTVgbsqKxg4s9f9
Score

3^/10
behavioral3 behavioral4
- Target
  
  email-html-2.txt
- Size
  
  6KB
- MD5
  
  7c676ebe51755566a0a06dbf47bf3161
- SHA1
  
  3aaf1c07c5403e14c0abea40b74bac9e74852542
- SHA256
  
  dbb02ad7cade5343dd99b7c76bf705c8b7c1309b58473979d4bc43b07f9e4a7d
- SHA512
  
  0395445ea07d37e527828d9264377e0f0d584c14e10ed10d8c6c1f4c98eae07943526cbb3c433bc54862d8acb3d3d19057feef24c80b971cf840558c08a07f84
- SSDEEP
  
  192:KYkagiCRwB7+p+CXzCciufrjyz8Z7E5sdg3wSUv6bc899Syv:K62DCciufrjyw1E5sdn2c899v
Score

1^/10
behavioral5 behavioral6
- Target
  
  email-plain-1.txt
- Size
  
  1KB
- MD5
  
  d3b2636064b089357864190340049392
- SHA1
  
  ff076a42fafba52d14e5a5139fd1a9b92ba1ae8b
- SHA256
  
  faee289898c6fa33259f5b57eb95ef9918fc27583eba9d1fcb51eb484b974f0a
- SHA512
  
  74d355ab03810893df71ba2afd15e903024b44acc502ec1fa1c03f68dd6eddaf3998fa31a53b2ebcdf9943551feba8d03eefa59b096457c5baba2adc86c6e7ca
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8