Overview

overview

3

Static

static

3

MAILLST.vbs

windows7-x64

1

MAILLST.vbs

windows10-2004-x64

1

MAILSUP.vbs

windows7-x64

1

MAILSUP.vbs

windows10-2004-x64

1

NEWMSG.vbs

windows7-x64

1

NEWMSG.vbs

windows10-2004-x64

1

VBMAIL.vbs

windows7-x64

1

VBMAIL.vbs

windows10-2004-x64

1

vbmail2.exe

windows7-x64

1

vbmail2.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    00fa0df9b2115633ba847de37a366f87

  • Size

    49KB

  • Sample

    231229-xja99sdhgq

  • MD5

    00fa0df9b2115633ba847de37a366f87

  • SHA1

    c0513a9eff7854ad01305abdb69becf26f1fd956

  • SHA256

    bc4c0d00a9a4f9bf0f2726299e3b2e0ecd7caf874f1643eccc3902027507ca13

  • SHA512

    69f44c790c373ee5418910005ed65142ced8a12a5eb0ba77fc25a898eb189a14b92f16fa4609e74a759b7f2a94ad425b76b0b507ea2d3c6ed7cad9b251fc0563

  • SSDEEP

    1536:xTWLgEd8iAD1uufj2L5yPsLC5GY62Akqer9U9:xtEmpfj2QULC5162GerI

Score
3/10

Malware Config

Targets

    • Target

      MAILLST.FRM

    • Size

      7KB

    • MD5

      d9e95cfc1a5571f5b9b06bbc3c5942ce

    • SHA1

      684662f17672df5cac6004ecd63fe74b9e6abf67

    • SHA256

      dd16f4ff51ea5435d21a7702c9cdae54718b1fa6ddcb929f7556d6c3f2212572

    • SHA512

      57b411a6d393a7e938d957531e79766e44d912aec09508ae723cde7f1cc5eda910a1cddbd9bbfecec99e8f9b498e4180d996d3b379a05cf1d553785fd24194f7

    • SSDEEP

      192:hhw/O/s+vPx/aaZaXIBls4/i/B/g9m4Y5M:hC+vh9m4YO

    Score
    1/10
    behavioral1behavioral2

    • Target

      MAILSUP.BAS

    • Size

      18KB

    • MD5

      eeb2c7239f5609837228db100b713d8d

    • SHA1

      9fefbd657855268483ea7aeebd2b8e228afa2e47

    • SHA256

      7901ef14a8fa9b6107f5a55a288116d638b060b0dfa7297a9fbce82ba45489e2

    • SHA512

      ced0dc8039c54b82f6bf19ffe6759e81628b7e3c4375d5a5e7ce4cf30a1bb45ff9a752c27098e955849e12acbca9b3b0eb5178298fa57229f65b911b1af0946c

    • SSDEEP

      192:sA29UYl/vuqzZnSjd/FsVCkbtL27/i/Fp07/s7Kb/61trM0daKEQjw6aqMpKTg:D2OWnpBd1xzkdgyWg

    Score
    1/10
    behavioral3behavioral4

    • Target

      NEWMSG.FRM

    • Size

      8KB

    • MD5

      6ef6f8ce3971827919a25e15843cbb11

    • SHA1

      75e6409258fcdf1335bdb492e0a1e0ab4c5b1de4

    • SHA256

      46b6be8f1f2f2ab3c0f73365d1e1c5cc3161b98a6716d5903fb464961476a870

    • SHA512

      ea0f1248ba5d2b2e57e624d79faf85e6b22c0a730f2509567d942454b92d739dc6220db735500c6e71346a2a800b9a8e9f008c7e945a92b7a38c27a0985b8fa5

    • SSDEEP

      96:tLghAtSH/9BmEZgZH/cmevH/gH/BH/taWlA+Dix1V9/jezcHK2fXmP:hXw/aWg5/cJ//W/x/EkmricHa

    Score
    1/10
    behavioral5behavioral6

    • Target

      VBMAIL.FRM

    • Size

      20KB

    • MD5

      07d64afa5b4988fc9f3afb7e6926abf0

    • SHA1

      6aaf6a88da1f2aec19dd53d05c88b2595c76bcf6

    • SHA256

      e760ad4c26d24f949c2b53694cfa55d9cc61114385891bfefd9baf025285095a

    • SHA512

      e53ebe28a928f13e1034c52a0b59074c1bb64da551ab632e1678cb34b3a89c3be222411eadfcc3e45bee92ffb3d13a7f2f863f472a5b675c1ebababa0254aacf

    • SSDEEP

      192:qPlRkzZ6/4/W77/Y1l/d/eZS/6z3lq/k/56BloW/Q/T/s/p/H/A/w/e/v/+p/nfE:QlRkO7s1mZZ4lWBx

    Score
    1/10
    behavioral7behavioral8

    • Target

      vbmail2.exe

    • Size

      132KB

    • MD5

      d4e2820ddbd036cea14959029d21d18c

    • SHA1

      b2d3f6dada50b1e672de98c090cc94c519e85acf

    • SHA256

      5c88e60989df818a5b2272a809fb5fc7515489157d6f11bfd7d63994778a034f

    • SHA512

      571f82c5cbffbb8e800e1e7d7e5213ec1002bfbf91977cf39a1b379c71e7ae58fbae5d7bfd8b42988780bd5b7030b0acfa58e353dc8c00bcc386bd24c9ca5af0

    • SSDEEP

      1536:iTLR0o/YgP2xpPqLc/13MmKtUzScRE9Sce+jWBPqw/0yLMUFmMfQfBey/qxCZQgH:ct0y8PfKmzS1w6UOXPn

    Score
    1/10
    behavioral10behavioral9

MITRE ATT&CK Matrix

Tasks