Overview

overview

5

Static

static

1

FW Review ... ].eml

windows7-x64

5

FW Review ... ].eml

windows10-2004-x64

3

email-html-2.html

windows7-x64

1

email-html-2.html

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FW Review and Complete[Timesheet for Nationsroof_v80093] [ threadQ1m-K-3Hc3W1b-g4UhkhbD0 ].eml

  • Size

    25KB

  • Sample

    240521-yg72wsgd88

  • MD5

    bd5006c2f8ff0e041329a43fca52a3f9

  • SHA1

    5d9050d3ac220dee62b4eb4e0486356afa670571

  • SHA256

    155ca5bef45b0a5d31d597a67d1df391c106a871d26cd68746557f90db214040

  • SHA512

    da9b3278aafa187a8334b25315c069cda29266f1228d5d49a6b23642d22db8185f44f4d83678ffcc64572db063d07e778776935c2b40f9b3b7c2467838869560

  • SSDEEP

    768:nmNdm5UDX/fMO3V8NskjoAHZ4hvGPOwKOuOyFq8IqYqB7:nudmoX/uNxo

Score
5/10

Malware Config

Targets

    • Target

      FW Review and Complete[Timesheet for Nationsroof_v80093] [ threadQ1m-K-3Hc3W1b-g4UhkhbD0 ].eml

    • Size

      25KB

    • MD5

      bd5006c2f8ff0e041329a43fca52a3f9

    • SHA1

      5d9050d3ac220dee62b4eb4e0486356afa670571

    • SHA256

      155ca5bef45b0a5d31d597a67d1df391c106a871d26cd68746557f90db214040

    • SHA512

      da9b3278aafa187a8334b25315c069cda29266f1228d5d49a6b23642d22db8185f44f4d83678ffcc64572db063d07e778776935c2b40f9b3b7c2467838869560

    • SSDEEP

      768:nmNdm5UDX/fMO3V8NskjoAHZ4hvGPOwKOuOyFq8IqYqB7:nudmoX/uNxo

    Score
    5/10

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      email-html-2.txt

    • Size

      2KB

    • MD5

      a12831fa784d693e9bf537cc09566ea8

    • SHA1

      79f6c39dddac8ce4e5c179f35fcd68cc54e8179a

    • SHA256

      deaf46f1f621f86df44bc6a1b364861c1c71d0945bb1281501439236f74d5358

    • SHA512

      d98bd230bf2510e6fd42afd0ac6ebc6cad52a845f9946db2d1bffd04663fcafa837532da07077bddecad9de203a6d35c200575660287edbfb1e2b06c4637e131

    Score
    1/10
    behavioral3behavioral4

    • Target

      email-plain-1.txt

    • Size

      1KB

    • MD5

      46a4937f8c2bb2e6785beac075e660df

    • SHA1

      df9a7bf4b96cdd660f7cabc604967b1ce5ba2e03

    • SHA256

      d5ea24adabc9edc6295c4295ef48c468a442f433f2aae1cbe01fe78bdf7b4e08

    • SHA512

      54b0c4659e2f51e2078d7e14fb49e289ed8bbec8690af324021d7fbd97986d00974448d9e1c710f75e63b07c886b9f277c50bf7f9e2e410770747e3a86abad1c

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks