Overview

overview

10

Static

static

5

9d6e803608...a9.exe

windows7-x64

10

9d6e803608...a9.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fee1fccde7b4f3ea58fe37455f276b711a42aee63e2d3161b9d5be95a38cfb6f

  • Size

    455KB

  • Sample

    240417-rsbdqsbh42

  • MD5

    f9989a79d1b0395757e733a6e66432b4

  • SHA1

    19fcc58c83f1dd9bc8abe1229eb410452819a1de

  • SHA256

    fee1fccde7b4f3ea58fe37455f276b711a42aee63e2d3161b9d5be95a38cfb6f

  • SHA512

    cdd0c4e63697d29f154c8156b3b49367350b4e9ebfa0295d6bbfadeb86c11a2642949558254948be25fce77316c8b166667165d5719873d8c15d5f488786819c

  • SSDEEP

    12288:AKeMGtrDdyoQC8xqto3SjrP/VHX2z5+DDkP0TY:AKeJdXLgSfPtGzi0wY

Score
10/10
googlephishing

Malware Config

Targets

    • Target

      9d6e803608352225b79cc75bf2f876703124a268ff193ce6ce7d30a6b2bb0da9.exe

    • Size

      897KB

    • MD5

      6099a8fd5e1e9b9a92139992443f93c1

    • SHA1

      3f5d432455f9bc1bbff44429c916ac8113c3f380

    • SHA256

      9d6e803608352225b79cc75bf2f876703124a268ff193ce6ce7d30a6b2bb0da9

    • SHA512

      144463243bd0cc619da2204f750b34fa4dbeaa9cfed9fd397a033fdf041600083047a07d16927ce9a3ba2515eb7ff667112f48c0ab22fb71c4862aecb24f0dcc

    • SSDEEP

      12288:TqDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgazT2:TqDEvCTbMWu7rQYlBQcBiT6rprG8aH2

    Score
    10/10
    googlephishing

    • Detected google phishing page

      phishinggoogle

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks