Overview

overview

1

Static

static

1

login.php?...2.html

windows7-x64

1

login.php?...2.html

windows10-2004-x64

1

User tags

Assigned on submission by the user, not by sandbox detections.

Threatview.io Proactive Hunter

Sharing

Copy URL Twitter E-mail

General

  • Target

    login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https:%2F%2Fwww.facebook.com%2Fsharer.php?u=https%3A%2F%2Fdetection.fyi%2Fsigmahq%2Fsigma%2Fwindows%2Ffile%2Ffile_delete%2Ffile_delete_win_unusual_deletion_by_dns_exe.5

  • Size

    43KB

  • Sample

    240406-fasphsaf71

  • MD5

    b20d74311d871d87836676a5e8e88a5a

  • SHA1

    0ca6d9e62f8381664cd1eb00c71a99e588b4d0a2

  • SHA256

    f1d608175b4880d2c9d2962c4a322b85081d27df1740ce66820c7f1c8c1f5ccc

  • SHA512

    f54b22bf4356cce26511b01468c96fee3840b4c485a77c33e1c1e0890424305482e54e4f11db9b2075dbc87a12f153e3cb90fb66860f844e5085ac166d790ec2

  • SSDEEP

    768:syiPsMnv5gDiFGl7to3b8Ww5dx3mkHDmNwFOHTFT8bafnCleB0ptGu1WwNTeK:5iPsMnvPF27+3b8WAdFmkyNwFOHTFT8Z

Score
1/10

Malware Config

Targets

    • Target

      login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https:%2F%2Fwww.facebook.com%2Fsharer.php?u=https%3A%2F%2Fdetection.fyi%2Fsigmahq%2Fsigma%2Fwindows%2Ffile%2Ffile_delete%2Ffile_delete_win_unusual_deletion_by_dns_exe.5

    • Size

      43KB

    • MD5

      b20d74311d871d87836676a5e8e88a5a

    • SHA1

      0ca6d9e62f8381664cd1eb00c71a99e588b4d0a2

    • SHA256

      f1d608175b4880d2c9d2962c4a322b85081d27df1740ce66820c7f1c8c1f5ccc

    • SHA512

      f54b22bf4356cce26511b01468c96fee3840b4c485a77c33e1c1e0890424305482e54e4f11db9b2075dbc87a12f153e3cb90fb66860f844e5085ac166d790ec2

    • SSDEEP

      768:syiPsMnv5gDiFGl7to3b8Ww5dx3mkHDmNwFOHTFT8bafnCleB0ptGu1WwNTeK:5iPsMnvPF27+3b8WAdFmkyNwFOHTFT8Z

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks