You 4 held messages[.]msg | Triage

Submit
Reports

Overview

overview

5

Static

static

1

You 4 held...es.msg

windows7-x64

5

You 4 held...es.msg

windows10-2004-x64

3

rt.png

windows7-x64

3

rt.png

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

You 4 held messages.msg

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

You 4 held messages.msg

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

rt.png

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

rt.png

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

You 4 held messages.msg
Size

118KB
MD5

5d189e0cf3183c208523bd497e379a0c
SHA1

5b555a491f051a1ac3cb02134125e28519438dea
SHA256

37255daa6606b4d73cc4c3f8e6a3e8f74111f7fc9488972f1e6b2bdd6bcaa0ce
SHA512

66c536939f730236b7f3f66a969a618f63e16a5dd0e6effdf009ee09f747fb7af50802828ee30cc86a53a4b679ac4194053b762f9220c1c2cb982948c6b95946
SSDEEP

3072:qCice6MxR+BAalGIC1dwffFNP34LuWg6OC5Lw:bicb1BAuAXqFNRx6OC

Score

1^/10

Malware Config

Signatures

Files

You 4 held messages.msg
.msg
- http://2Fr20.rs6.net
- http://2Frayner.com
- http://gmail.com
- http://hpousa.com
- https://aka.ms/AAb9ysg
- https://protect2.fireeye.com/v1/url?k=8cc9a64e-d3529fb5-8ccefdba-000bab
- https://protect2.fireeye.com/v1/url?k=8cc9a64e-d3529fb5-8ccefdba-000babff7005-1ac259c5f5d7b062&q=1&e=d466d0ba-7c6c-40c3-bb9e-609b6d25af2f&u=https%3A%2F%2Fr20.rs6.net%2Ftn.jsp%3Ff%3D001Gmo9MTVwhbSiFlvHE5YRDIwC59xnHYd4Q2FKka808jVw-WXhvQZuIRB-FI6roOg_eut8xW8bOvBTduTXp0CnH5JMBc4_Rho0uyB8kRbltxk3jlAxElzjdl0AblfnyUXoGh9rW5YNsxIUfjF2_si21g%3D%3D%2526c%3Dz6MkHQXZLlx68hZfn5Fb0zhCR03JBnD7eCBP7ZChNI_zGnm4jQb2hg%3D%3D%2526ch%3DREfSOXI4Z2aeN7YyCu7Urz0UnlQkHLtm_X0_BUkikM44hCess3gLvw%3D%26__%3D%3Fe%3DYWtzaGF5YS5tb29uZHJhQHZvZGFmb25laWRlYS5jb20%3D
- https://r20.rs6.net/tn.jsp?f=001Gmo9MTVwhbSiFlvHE5YRDIwC59xnHYd4Q2FKka808jVw-WXhvQZuIRB-FI6roOg_eut8xW8bOvBTduTXp0CnH5JMBc4_Rho0uyB8kRbltxk3jlAxElzjdl0AblfnyUXoGh9rW5YNsxIUfjF2_si21g==%26c=z6MkHQXZLlx68hZfn5Fb0zhCR03JBnD7eCBP7ZChNI_zGnm4jQb2hg==%26ch=REfSOXI4Z2aeN7YyCu7Urz0UnlQkHLtm_X0_BUkikM44hCess3gLvw=&__=?e=YWtzaGF5YS5tb29uZHJhQHZvZGFmb25laWRlYS5jb20=
- https://protect2.fireeye.com/v1/url?k=cbe4dc04-947fe5ff-cbe387f0-000bab
- https://protect2.fireeye.com/v1/url?k=cbe4dc04-947fe5ff-cbe387f0-000babff7005-ef6cd08ca994a794&q=1&e=d466d0ba-7c6c-40c3-bb9e-609b6d25af2f&u=https%3A%2F%2Frayner.com%2Fpeer2peer%2F
- https://rayner.com/peer2peer/
- Show all
rt.png
.png

© 2018-2025

Terms | Privacy