f2a6d2b8872737d724fd39ec1b4ea8ceb5645706c831512dfca971caefe3b003 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Undelivered Mail Returned to Sender.eml
Size

119KB
Sample

231011-l1es8sff2v
MD5

a0cd96ba0dd43a724576eb41c2c37544
SHA1

ff8666d7b18e001e23854ff9f4807cd9a25bbf0a
SHA256

f2a6d2b8872737d724fd39ec1b4ea8ceb5645706c831512dfca971caefe3b003
SHA512

f5936b2a1298f44cd90817a44e4aec80b588c706508e8b618f24776e4605c7894e4aa636568f0617ac9cac875b151e2b1f45ed043a58de88aebb7446e1b350f3
SSDEEP

1536:YYQPDgSaOkHS5ZRlp7RvoZBu5OQf8S8DkDY1FwLrozjgLumiQCdTLwqFPkv3A1fH:I8Sqy/RlpVv8soQfQsIwLUuucnvm5P/

Score

5^/10

Malware Config

Targets

- Target
  
  Undelivered Mail Returned to Sender.eml
- Size
  
  119KB
- MD5
  
  a0cd96ba0dd43a724576eb41c2c37544
- SHA1
  
  ff8666d7b18e001e23854ff9f4807cd9a25bbf0a
- SHA256
  
  f2a6d2b8872737d724fd39ec1b4ea8ceb5645706c831512dfca971caefe3b003
- SHA512
  
  f5936b2a1298f44cd90817a44e4aec80b588c706508e8b618f24776e4605c7894e4aa636568f0617ac9cac875b151e2b1f45ed043a58de88aebb7446e1b350f3
- SSDEEP
  
  1536:YYQPDgSaOkHS5ZRlp7RvoZBu5OQf8S8DkDY1FwLrozjgLumiQCdTLwqFPkv3A1fH:I8Sqy/RlpVv8soQfQsIwLUuucnvm5P/
Score

5^/10
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  attachment-2
- Size
  
  111KB
- MD5
  
  cf43717e1bfb213c4147deb2429e83c5
- SHA1
  
  5e6d40aa1e1f71e67eac03c365f279db9a8a9c0d
- SHA256
  
  d8dc1d6927407ebae9476f4ea3c12e15f15c734d5f067ac67ed80cc0505d5695
- SHA512
  
  6c0b4802f94984692bb34b5872b40439f7bdaf8249334f7c6e355506f157768cf626ec3d70fb0f676958cf1c4a73b06dc37a75e50c2d4e38f92be59e05953f76
- SSDEEP
  
  1536:gDgSaOkHS5ZRlp7RvoZBu5OQf8S8DkDY1FwLrozjgLumiQCdTLwqFPkv3A1fJ8ab:ZSqy/RlpVv8soQfQsIwLUuucnvm5P1
Score

5^/10
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  attachment-1
- Size
  
  22KB
- MD5
  
  5aed09dc537f086de650c222d806f965
- SHA1
  
  0ca33d6760783f49b550fb96741e94b44464e6f3
- SHA256
  
  038570e594e68f157b56dc403fe01e240f7ee37bc260b54da4417dae7670df05
- SHA512
  
  5f1a4121d6cee1965334dae5f5e758d6109e99c4e041a848e837bc88011d762da1be8d00f403e68d69fa21bfaaad78f512fa8cd2ef3dc5a8c31495c423e94068
- SSDEEP
  
  384:JqHIrc52fYXL7zL8uuQupbuQCj+qpUBydRP9JuC:UHMc5yVCZ9F9JuC
Score

1^/10
behavioral5 behavioral6
- Target
  
  email-plain-1.txt
- Size
  
  181B
- MD5
  
  ad1b6905be2eb48ac113c1ac9a066949
- SHA1
  
  7bf7bda5691d9881cd65063fa92ead055505ea1f
- SHA256
  
  50e88b7ee3f50e474e9602f276f74065f0497b667f7a32b3a5701e31550724c3
- SHA512
  
  fc39078c1bcc489536fd8485a63d78c2519dadccbf79cd8e9380f295e7f111389d842b9098815259b428d0a368fa68cd9167a1079130c374a64ef8701c4b56ce
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8