Overview

overview

10

Static

static

5

21c98b041a...63.exe

windows7-x64

10

21c98b041a...63.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13594e7e2c07998ac61fb9adde506f7c07dd3324866bf6e3a668c57a88219c6e

  • Size

    452KB

  • Sample

    240417-r5hctacf95

  • MD5

    10f0c1f633790f7572ad658055cb71da

  • SHA1

    c411e1e8ea555abc70babd101bf76d69bc2abf7f

  • SHA256

    13594e7e2c07998ac61fb9adde506f7c07dd3324866bf6e3a668c57a88219c6e

  • SHA512

    67d1f38657a5ac0e882e2920f761ad37b54d80e72be53913f0d408fa4666ac7c747dd70e9a67feba4dd613a9f4b742aa045d65d222b38051ee4eda615b9a853e

  • SSDEEP

    12288:KKjAF374dO4EsMLUri5VOY7cTpPA8R9uI5cr6z:MFLi2sMT5VOY7YuNq

Score
10/10
googlephishing

Malware Config

Targets

    • Target

      21c98b041a7b11856a279b5f29a90fe938b66ba592cdaae7a9faac1a6ddfa963.exe

    • Size

      895KB

    • MD5

      18f52b6a9f7eb48e1bee8b32e80eb219

    • SHA1

      b4f92bc582cb4d89376b38c650c42be86e3e7137

    • SHA256

      21c98b041a7b11856a279b5f29a90fe938b66ba592cdaae7a9faac1a6ddfa963

    • SHA512

      f06a0e88ab7a7c7a258d2f79d81ca4b6d92aa903bd2e6834c604c7470da1da1a2acdd089a985fd8bee743d482e1ba70067d3fb96383f2b8317c20b1cf5c90f4c

    • SSDEEP

      12288:5qDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDga6Tk:5qDEvCTbMWu7rQYlBQcBiT6rprG8aKk

    Score
    10/10
    googlephishing

    • Detected google phishing page

      phishinggoogle

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks