Overview

overview

10

Static

static

5

ed24826a22...c4.exe

windows7-x64

10

ed24826a22...c4.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b0ff9f72fdc589064f2fc9e2b458e6a3f2709dde2dee898ff917d8045d020161

  • Size

    454KB

  • Sample

    240417-rp54yabf89

  • MD5

    88fda42dbe133394732e2c3e84313eb5

  • SHA1

    0084715113b4c544be07652eafd27df1a73bf51b

  • SHA256

    b0ff9f72fdc589064f2fc9e2b458e6a3f2709dde2dee898ff917d8045d020161

  • SHA512

    b072e3faf683eb268284dea427916f3b89d3fa6d27b56276a218dc0376465aeeaec2ecb6941fa95a6d7041196142ea66cdc0c2c8fb8d1b415381fd181c98feca

  • SSDEEP

    12288:eQlsDsylhavqXIH1f/hE8QIS7qP5r6WIvliV9pKSED:BKl0sQnhEkT5r6u9pbED

Score
10/10
googlephishing

Malware Config

Targets

    • Target

      ed24826a2231038de59ebc6aa550d0c6ba34748af5c7ba8e652696f0140cafc4.exe

    • Size

      896KB

    • MD5

      8712e900c0180a0fda31669c6652f94a

    • SHA1

      ebde7e89f198ff722a2cd60c0e6055df161a0498

    • SHA256

      ed24826a2231038de59ebc6aa550d0c6ba34748af5c7ba8e652696f0140cafc4

    • SHA512

      aafc5f594d0da202714cfefca3b64750cba98f97dcef319473584196c3ab091e65e263176bda8e123407f7d62d259413219532fdf4249edaab4485b40650aabb

    • SSDEEP

      12288:3qDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgalTY:3qDEvCTbMWu7rQYlBQcBiT6rprG8aRY

    Score
    10/10
    googlephishing

    • Detected google phishing page

      phishinggoogle

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks