Overview

overview

10

Static

static

5

73edb93b4c...e8.exe

windows7-x64

10

73edb93b4c...e8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d23c2e9d2ab5e4ca322a52f63c2665856bc35c78ca05b9a8779f55fe4abe0ac0

  • Size

    452KB

  • Sample

    240417-r3fq7sce58

  • MD5

    71ed3972095246e6f7dffa824a645a83

  • SHA1

    d08e196a57d38ec3fd1f195e3901f13a728a504c

  • SHA256

    d23c2e9d2ab5e4ca322a52f63c2665856bc35c78ca05b9a8779f55fe4abe0ac0

  • SHA512

    6cfec6bd6e52236c30bec810e30d13cc242abfd4aa138ac1036b7a1d8c8919fac4abcef3445a27186cea8a17b37489b58db395f0187aca22be1028085709bda1

  • SSDEEP

    12288:rTRDkpY9OfQN3on5DrFwnUYPw+5jHdF5C1PEY2Q:+pDYNGXanF7hHdPC152Q

Score
10/10
googlephishing

Malware Config

Targets

    • Target

      73edb93b4c4eddd67d38c7f4681e51216202f8b8aa245460447847652b04e6e8.exe

    • Size

      895KB

    • MD5

      ef815145211a1a34f6e93ff364b83a79

    • SHA1

      5c89bc0d74050c075d1186c29f45b9c1b7a316ac

    • SHA256

      73edb93b4c4eddd67d38c7f4681e51216202f8b8aa245460447847652b04e6e8

    • SHA512

      16a88539a6fdd1ec0caa0dfb35c2677cbb39ba500a0ffc981c2c6ee77b41889868bf208d2cefbc32a0cf65a342a6d62a6669427123387f4ca413db4e9fe4a757

    • SSDEEP

      12288:5qDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDga6T9:5qDEvCTbMWu7rQYlBQcBiT6rprG8aK9

    Score
    10/10
    googlephishing

    • Detected google phishing page

      phishinggoogle

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks