General
-
Target
64cd19dfd0f43939aa3474ee.eml
-
Size
2.5MB
-
MD5
0c5ccd10804dd2778c74f21b9f67684d
-
SHA1
6e77359892b300a1455c0e33f5e2397b3a157e33
-
SHA256
cfb0f8addb8ff58c087f96f6de4458de6c1c7b6f9fbdc28f40d8ea47014f128a
-
SHA512
d16023102aaca97f1915662abdd9ded7c22022f4b30f4cdc7f91eadc0712fb7e2e5fbd75f2c6b7ee4999a8ed6151d7e2c764a2a058647372e739b60d69e52b82
-
SSDEEP
49152:rw3e06O4lbV79xs/5r5y8gviifptzphbUR8lCm6WhbrXqBs:V
Malware Config
Signatures
Files
-
64cd19dfd0f43939aa3474ee.eml
-
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=abejko%40almabank.com&senderemailaddress=sharding%40magicwrighter.com&senderorganization=AwGEAAAAAoAAAAADAQAAALmq%2f4PVYYZPjzP6S2%2bCjzJPVT1tYWdpY3dyaWdodGVyLm9ubWljcm9zb2Z0LmNvbSxPVT1NaWNyb3NvZnQgRXhjaGFuZ2UgSG9zdGVkIE9yZ2FuaXphdGlvbnMsREM9TkFNUFIyMEEwMDEsREM9UFJPRCxEQz1PVVRMT09LLERDPUNPTbWaRRnpNClBiWPMR8FPDG9DTj1Db25maWd1cmF0aW9uLENOPW1hZ2ljd3JpZ2h0ZXIub25taWNyb3NvZnQuY29tLENOPUNvbmZpZ3VyYXRpb25Vbml0cyxEQz1OQU1QUjIwQTAwMSxEQz1QUk9ELERDPU9VVExPT0ssREM9Q09NAQ%3d%3d&messageid=%3cCH0PR04MB81482318F41129D02273168EA009A%40CH0PR04MB8148.namprd04.prod.outlook.com%3e&cfmRecipient=SystemMailbox%7bD0E409A0-AF9B-4720-92FE-AAC869B0D201%7d%40magicwrighter.onmicrosoft.com&consumerEncryption=false&senderorgid=5d3f13fc-587d-4444-8ce3-3c9c9fd1e24d&urldecoded=1&e4e_sdata=fjxvzMH3hQueH%2f0INv6DSqqMWVWJoJNW%2f4lowtddasHi4JEhdSOHJRZNQ0BfMD6tYHRQApkCfzmVjo44cyLG7dJNPkIBUyKE9Bx2gc6ODtjdZqSJkEjJ4KHPsmK1pqTdKsqJunNDTXhphrs%2fn1m%2ffbnQ%2fO9U%2bioEU4vZE17ttedsuzJM0V%2fzcwEEsWPPBChLC%2bFRdZ8j1bkSUhhqeHc4VHOWH303yYmpcx7rMbCxsanuJGneQFCYOTBoirMNtVLpopB0RYIAjw8gjYaDNRB5BgX5krAV1HCuElB2vd0BpDGr4Itq14kx1bzGXlGHGAlRyQvEzkSBjuB7Cn%2fP8jCQCw%3d%3d
-
https://go.microsoft.com/fwlink/?Linkid=844050
-
https://go.microsoft.com/fwlink/p/?linkid=857875
-
-
email-html-1.txt
-
message_v4.rpmsg