d53d96839661c2ca387ae4106f6b2a53d1a3eb906c9292076429695bba764f76 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

avatar.htm
Size

105KB
Sample

240517-vcz9pshc55
MD5

a6010d9ee592f3bb72cfb2f962e076cb
SHA1

9a893e75eec7e97df4af8461175f444d13fc31c1
SHA256

d53d96839661c2ca387ae4106f6b2a53d1a3eb906c9292076429695bba764f76
SHA512

aca989757ddbcc309fe942f150e440b909e010479eda2662ce1662ff94a1632fe4e6f30d51e9879c3ceeb067b533f0e4c133d2530ab58afcabc50017391de4c7
SSDEEP

1536:SmYqwNOFY+NTuXNwPdxuBgEyZDtERE3AKYw:pYquOKXQdHtEWt

Score

6^/10

Malware Config

Targets

- Target
  
  avatar.htm
- Size
  
  105KB
- MD5
  
  a6010d9ee592f3bb72cfb2f962e076cb
- SHA1
  
  9a893e75eec7e97df4af8461175f444d13fc31c1
- SHA256
  
  d53d96839661c2ca387ae4106f6b2a53d1a3eb906c9292076429695bba764f76
- SHA512
  
  aca989757ddbcc309fe942f150e440b909e010479eda2662ce1662ff94a1632fe4e6f30d51e9879c3ceeb067b533f0e4c133d2530ab58afcabc50017391de4c7
- SSDEEP
  
  1536:SmYqwNOFY+NTuXNwPdxuBgEyZDtERE3AKYw:pYquOKXQdHtEWt
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2