Overview

overview

10

Static

static

1

(No subject) (1).eml

windows7-x64

5

(No subject) (1).eml

windows10-2004-x64

3

email-html-2.html

windows7-x64

1

email-html-2.html

windows10-2004-x64

10

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    (No subject) (1).eml

  • Size

    33KB

  • Sample

    240320-jbremabf99

  • MD5

    df64a40a29d58377c4d1dc82b5f789ca

  • SHA1

    badd8238bab91d433f4a29931c6b375ec65bae6b

  • SHA256

    6ff2ae1c2ae268504749c55f1b290f46efab4f8e663e3c869e76e29b8e7353cb

  • SHA512

    10a2afc40151779f3850d068b0ff36c87547ab455605e34064ca648c35ea62087529f49f074fdb3113d312336f0895915cfd66d175bf72153c03f06322595b27

  • SSDEEP

    384:qlFgHA1ZB6hxfuKjNRQQ9P6JUt79znGPZGn/QpYub7tob0bYZYEgWkx7HkSHpYHI:7g1bcxG4NRh6JY//zuPtogZBwI

Score
10/10
adobephishing

Malware Config

Targets

    • Target

      (No subject) (1).eml

    • Size

      33KB

    • MD5

      df64a40a29d58377c4d1dc82b5f789ca

    • SHA1

      badd8238bab91d433f4a29931c6b375ec65bae6b

    • SHA256

      6ff2ae1c2ae268504749c55f1b290f46efab4f8e663e3c869e76e29b8e7353cb

    • SHA512

      10a2afc40151779f3850d068b0ff36c87547ab455605e34064ca648c35ea62087529f49f074fdb3113d312336f0895915cfd66d175bf72153c03f06322595b27

    • SSDEEP

      384:qlFgHA1ZB6hxfuKjNRQQ9P6JUt79znGPZGn/QpYub7tob0bYZYEgWkx7HkSHpYHI:7g1bcxG4NRh6JY//zuPtogZBwI

    Score
    5/10

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      email-html-2.txt

    • Size

      17KB

    • MD5

      f872136d7c05a12e690ee07fcf40333a

    • SHA1

      a9fdbe6b01c54d062a9745e6029b5074b1c4d191

    • SHA256

      df02a4f103a298abc28fc7f760718f2b0d8855760bde2db77bc3662c80ec91e8

    • SHA512

      2eca2126b45b198bb824e46577b1f65d893726bfd915dd04d6f4efccbe9e6e6b0cd516537c25c1a9f5559c892c555f3a193b1fbeffaca6be8bcf3b5fd0894145

    • SSDEEP

      192:+bGNapzBP+qJk62as/LwuKghNE0gmOD1fE0ynu/T7bbOf19toRuauJuPRuGsLi0o:ypxJk62idpLWxQQGYXk

    Score
    10/10
    adobephishing
    behavioral3behavioral4

    • Target

      email-plain-1.txt

    • Size

      5KB

    • MD5

      5aa2ab53edc7ff8958da2bbf3d526644

    • SHA1

      9f06881edeca1994afca2a50ac7d9c5491ac4424

    • SHA256

      06e94b71bd35427b2dac79aa6231fe4e72d2b7c492292e9e0acf7c82809bba2a

    • SHA512

      fd0879766f46705e97401d422791a2498595c930dfed7a80ebbbda09e552036b753c1898fe24f1329403bb3d7b69b4770cbec93099c03e3668665f52c790053c

    • SSDEEP

      96:ZJ3k300gY/K300Cp3e/T3OsA3eh3eL3ec6BtV3eGtb3980R+p3eXC+22:ZJ3kE0gHE0Ou/TyuhuLuPrVuGpi0RquR

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks