bruteratel | 1f49cbe45a58ec27e848b1918cccb7fa704191cea0bf0419e02d9c7a7f80cf02 | Triage

Sharing

General

Target

phish_alert_sp2_2.0.0.0 (5).eml
Size

18KB
Sample

231211-hsfh1shcc7
MD5

68c3e4c1f029a6c8b4821a485b257b74
SHA1

b381a721457ab002b2b441c2088ec7321d13e36d
SHA256

1f49cbe45a58ec27e848b1918cccb7fa704191cea0bf0419e02d9c7a7f80cf02
SHA512

d2a211f249b5fc2edb25b02732e2276c4d65cf32953bbbe73b846ae6e708cd2704b570c531de0e831b3ccb35c594515c5fa6aac20bc62bd8544d0028d4dead25
SSDEEP

384:Kx9CeF/h8wz42HPm3/ZroFlVvs9Yb7U7Nf0tJN:4/Wwz42HP6ron8Y87503N

Score

10^/10

bruteratel backdoor

Malware Config

Targets

- Target
  
  phish_alert_sp2_2.0.0.0 (5).eml
- Size
  
  18KB
- MD5
  
  68c3e4c1f029a6c8b4821a485b257b74
- SHA1
  
  b381a721457ab002b2b441c2088ec7321d13e36d
- SHA256
  
  1f49cbe45a58ec27e848b1918cccb7fa704191cea0bf0419e02d9c7a7f80cf02
- SHA512
  
  d2a211f249b5fc2edb25b02732e2276c4d65cf32953bbbe73b846ae6e708cd2704b570c531de0e831b3ccb35c594515c5fa6aac20bc62bd8544d0028d4dead25
- SSDEEP
  
  384:Kx9CeF/h8wz42HPm3/ZroFlVvs9Yb7U7Nf0tJN:4/Wwz42HP6ron8Y87503N
Score

10^/10

bruteratel backdoor
- Brute Ratel C4
  A customized command and control framework for red teaming and adversary simulation.
  backdoor bruteratel
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  email-html-1.txt
- Size
  
  4KB
- MD5
  
  b5fb2f4fbdb6c94c3cabfc69d1272e49
- SHA1
  
  b0fdca56da9ea0bca433c9092aaad86c96dce168
- SHA256
  
  75b137c04ecaee7b4768331c5e7faa1886b164ec382e00e1e9540ed9507502e5
- SHA512
  
  b26ab068e4a9715276af093af4f5b5271456a8030a6e94b2db249f7818951a489234ae9f3afc8bfdc47177bfb475f4fad49bd36a1b1eda84eb66a8c22534ac3f
- SSDEEP
  
  96:VuDUWBB6Aucozs9Rro4vSoLCxiSomiSowiSorpqzSiSomiSogSiSomiSH9iS6ehy:Vdzs9Rr3Vb538bAbzRaUUUM+ehmIImAZ
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bruteratelbackdoor

behavioral2

behavioral3

behavioral4