61859a2460b667071ecd47bb30206247afc972d6a02f5932d827057734347133

Sharing

Copy URL

Twitter E-mail

General

Target

newhotmail.zip
Size

33KB
Sample

230725-m4mtpacb94
MD5

8a7b5e74dfa3a388aa0968fef99818e5
SHA1

f345f529040c8f0cd9ab1b8b81cecf2107591e6b
SHA256

61859a2460b667071ecd47bb30206247afc972d6a02f5932d827057734347133
SHA512

0a9c6950e26f896163537fd93239906c0baa1098f5d903d1cfa4fb81b5cde13290ab19619df95999cf8dea89bc70e4cc58cd7290042be5a045f5aedeb1591795
SSDEEP

768:nNpPMmUi4jaocY0ZAneeDfQufug10fNWAL9LOpNhE+H:nLkFSocY0ZAvpfb+fMe9q8O

Score

7^/10

Malware Config

Targets

- Target
  
  newhotmail.zip
- Size
  
  33KB
- MD5
  
  8a7b5e74dfa3a388aa0968fef99818e5
- SHA1
  
  f345f529040c8f0cd9ab1b8b81cecf2107591e6b
- SHA256
  
  61859a2460b667071ecd47bb30206247afc972d6a02f5932d827057734347133
- SHA512
  
  0a9c6950e26f896163537fd93239906c0baa1098f5d903d1cfa4fb81b5cde13290ab19619df95999cf8dea89bc70e4cc58cd7290042be5a045f5aedeb1591795
- SSDEEP
  
  768:nNpPMmUi4jaocY0ZAneeDfQufug10fNWAL9LOpNhE+H:nLkFSocY0ZAvpfb+fMe9q8O
Score

1^/10
behavioral1 behavioral2
- Target
  
  newhotmail/hotmail/.DS_Store
- Size
  
  6KB
- MD5
  
  fbd2acb83d1032099039575b8c775ed8
- SHA1
  
  f3fed36ebe2f4e1b64fcc6b0110ddaac6ed7cf91
- SHA256
  
  b95de540b6d8efac07b146159e19a252bd4160d4789585a6941b520afb1de979
- SHA512
  
  4b164af69079c37e2bd2ed8a3116f92a0ee754c9263a3f8122e130f1ecac36648a9844faeed7da2ca4db6212b7f111a6df91df24cd5f8c729fd69e0367c4ff8d
- SSDEEP
  
  12:QMpaUFFHoYifILM0UVITotFFHoYifIz0UVITOM9EEX/HnXw6X1EK/5Xw6X:0UFVoYF7ytFVoYFg9fnV5V
Score

3^/10
behavioral3 behavioral4
- Target
  
  newhotmail/hotmail/block_detectors.php
- Size
  
  14KB
- MD5
  
  51b39bfbec6e42f6cf18cfadbc77fb37
- SHA1
  
  b3fdfe6f7ac7a0f92abfc4e90454dc506958f7ff
- SHA256
  
  5f8eb3eea1c55b271dbf1140e768d202ebf1dd8f1601a23e4c1071ccb86c52ed
- SHA512
  
  eb44ffbcb9bd6d723cf3e90dca566562bb83679e85e8aad7c712955999dc975e81d0fc8b845e3d0a746cc19e5f581843c27f70d490e97917051a893909605a98
- SSDEEP
  
  384:f/QT2Q1iRbQjXc51DI7tgYERU2TeZPz8iKOI2wERHdmp3cb41D:f4T2QARbQjXM1DI7tgYERRqvZOcgpd1D
Score

3^/10
behavioral5 behavioral6
- Target
  
  newhotmail/hotmail/css/.DS_Store
- Size
  
  6KB
- MD5
  
  194577a7e20bdcc7afbb718f502c134c
- SHA1
  
  df2fbeb1400acda0909a32c1cf6bf492f1121e07
- SHA256
  
  d65165279105ca6773180500688df4bdc69a2c7b771752f0a46ef120b7fd8ec3
- SHA512
  
  58941214a8334331e52114aab851fc3d8d5da5dd14983f933da8735c24b0ddcac134e8f13692553199c4d9a14a4b3188b62878a30b9d696edda1204666b60837
- SSDEEP
  
  6:VWAlXN6XkEslX/9ldlXSPnrtHP8//kHLEk0/ulXSPnrtHP8//k:QAXN9EEX/HnXw6XMLEk0/qXw6X
Score

3^/10
behavioral7 behavioral8
- Target
  
  newhotmail/hotmail/css/styles.css
- Size
  
  1KB
- MD5
  
  ff2e2bbf0a5b2be28dcd2be9e138f2c2
- SHA1
  
  4371c8fed104ac9467f261792a302d5e20f0df9e
- SHA256
  
  27732da9086f732dfbe7ed9dc94da532b413cf0565b2b11afcd8b09208bff464
- SHA512
  
  c1a0d2139f016b44ca12a80d22b01e67fbfb684f8fa49c69b18db1891cd1f8d8a2b87d4a22a8e5ced553300c5248eaa914fd06cb667650dcf639a494330ef50b
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  newhotmail/hotmail/css/styles2.css
- Size
  
  1KB
- MD5
  
  14f374ca6a431ae435e02e1e82ea0208
- SHA1
  
  2bb9d015f83b2690c3aff434e889bc9420057864
- SHA256
  
  30051b3938ad5f811dda560878c62acca73c8a4433cc12016f8b593fbf1d44b2
- SHA512
  
  78a0eaf0d7272b1986fe3778a528efe16e56912a7a0cc18aa630a6bb8d373ff3cbdf3b87a1abb8fc909372d48b1ad183e92608428c2c3edc7b4f9cd060cdee81
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral11 behavioral12
- Target
  
  newhotmail/hotmail/images/.DS_Store
- Size
  
  6KB
- MD5
  
  194577a7e20bdcc7afbb718f502c134c
- SHA1
  
  df2fbeb1400acda0909a32c1cf6bf492f1121e07
- SHA256
  
  d65165279105ca6773180500688df4bdc69a2c7b771752f0a46ef120b7fd8ec3
- SHA512
  
  58941214a8334331e52114aab851fc3d8d5da5dd14983f933da8735c24b0ddcac134e8f13692553199c4d9a14a4b3188b62878a30b9d696edda1204666b60837
- SSDEEP
  
  6:VWAlXN6XkEslX/9ldlXSPnrtHP8//kHLEk0/ulXSPnrtHP8//k:QAXN9EEX/HnXw6XMLEk0/qXw6X
Score

3^/10
behavioral13 behavioral14
- Target
  
  newhotmail/hotmail/images/hemail.png
- Size
  
  1KB
- MD5
  
  a5f0e93869e0b19b9e54391508a6176b
- SHA1
  
  cd9147821b0bbcb0b5864759c126402dc50f8837
- SHA256
  
  7aada8ad73e8061c6c75391bac680d05f2f69cff270e6c0b26c1c9fa2074ebb9
- SHA512
  
  e2cdd5aee7c6189847e6e6a0248354137f09edcbfd6ca24c56628d0ab56824bd3c3a1033b336c95e09c685233f0ec52c95c49b7340b64994b0df20baa914ed71
Score

3^/10
behavioral15 behavioral16
- Target
  
  newhotmail/hotmail/images/hfavicon.ico
- Size
  
  16KB
- MD5
  
  12e3dac858061d088023b2bd48e2fa96
- SHA1
  
  e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
- SHA256
  
  90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
- SHA512
  
  c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01
- SSDEEP
  
  24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO
Score

3^/10
behavioral17 behavioral18
- Target
  
  newhotmail/hotmail/images/hlogo.png
- Size
  
  2KB
- MD5
  
  f0277e453351cd75215b8f562d2e4905
- SHA1
  
  8c0cd98f8e0df124c7bd2e420907010f01a06aac
- SHA256
  
  a0cb270bed547cd411347968bef658c7aab9cbb65a560d8a2fe33607692bf235
- SHA512
  
  ff541a3d4a8c9b8f71a7309dbac9524ab2e8d7af3e01717dca9e3120bf2ccd5ae0883b23ad5dffdb4a04b5f18bad8795f3d476febb3dbc94e8651988bd4098e3
Score

3^/10
behavioral19 behavioral20
- Target
  
  newhotmail/hotmail/images/hphone.png
- Size
  
  1KB
- MD5
  
  ce06ec4686c6e70bf701ed09bce8e47b
- SHA1
  
  ada216b90b7a9f08adaf4618461f831e6fe0c3bc
- SHA256
  
  b83c82992375cce523695827d9a9f72f310978908ab2017b8b0001a7980ee4dc
- SHA512
  
  b37dfbcf8d8ca46de1abd486be8d791869c33748f48322a874d1b53b60bb7dbe8b2d625fac25999ff5b60eb873d1b36b1ea8e9e9c3289078b808c301f7697061
Score

3^/10
behavioral21 behavioral22
- Target
  
  newhotmail/hotmail/images/spacer.gif
- Size
  
  43B
- MD5
  
  df3e567d6f16d040326c7a0ea29a4f41
- SHA1
  
  ea7df583983133b62712b5e73bffbcd45cc53736
- SHA256
  
  548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
- SHA512
  
  b2ca25a3311dc42942e046eb1a27038b71d689925b7d6b3ebb4d7cd2c7b9a0c7de3d10175790ac060dc3f8acf3c1708c336626be06879097f4d0ecaa7f567041
Score

1^/10
behavioral23 behavioral24
- Target
  
  newhotmail/hotmail/index.php
- Size
  
  3KB
- MD5
  
  f54751eec298e805b3ccd9b3ffc90e9e
- SHA1
  
  df0d8ae8e7ff5776e325487225037c5c5bf43d9a
- SHA256
  
  c4dc16b0e276114f874bf36f55d123dcb1156509036a6d11ca45a0f9dbf49b49
- SHA512
  
  2bc3bfb01a906605e14950187454f8941b66864a9748781e824be7f940b78589a8622493baceddaaefda630e14a251404da90ecdd6987dd39d4647b929879632
Score

3^/10
behavioral25 behavioral26
- Target
  
  newhotmail/hotmail/log.php
- Size
  
  2KB
- MD5
  
  8f3feb841ddf4e9feb702b18de5380f6
- SHA1
  
  e8cc81dd89bcd86cb347984c7c6dd4827c9d175b
- SHA256
  
  0f905866d0118a674191eb5d20c63fb0c2fb287d8c00027280cf0285278391a0
- SHA512
  
  61bd364d45506fe5a11892d9e20f55ed89e5729229ef7a870cae6be6961cce868d81bf30905d4dd82ed7e285bf64281da374dffce163f3157139c0bfd1c44626
Score

3^/10
behavioral27 behavioral28
- Target
  
  newhotmail/hotmail/no_recording.php
- Size
  
  15KB
- MD5
  
  1831f780efe63c0f29f8c169a4adcca6
- SHA1
  
  c38dfe858ea79c5b2558494e11581018e9f18a95
- SHA256
  
  e859ed0b4d03506fb4e0761e5149483817c19f899580d3c094014f22276b4fbc
- SHA512
  
  08acaee40f2cb2bdaae3a08c82e1daa5474524526957dd7627e37cc29b863474262593dafbbcf6124772097c8e24dae38e15ee8426c173e1d5063535c38350ca
- SSDEEP
  
  192:7roZz/hlAnhCVRc6xbopf2KhFtZMOWxyzhtdSOC1LNROPSYYLuLIjYhEmuEg5Ipy:fMl4oRXK28y1yzYKLI0hEmu3fo2j
Score

3^/10
behavioral29 behavioral30
- Target
  
  newhotmail/hotmail/page2.php
- Size
  
  2KB
- MD5
  
  9bdd7c467449655ff919260f1dadf7c7
- SHA1
  
  e9516492f324af11cd5894f5c8084f5ac34a9bc7
- SHA256
  
  d20ad310bc44e840687d7b21cbb1e449252ad1a5513de782baa4b34cb69be823
- SHA512
  
  71dd103fc7f89a0c60e0f6039271bb1997025976a1cbb27724772d8a0a75d790dddae963bcacf0f77c79f29de9f76b5a97122b33b78d33b099215d49d87c562e
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Query Registry

T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32