General

  • Target

    4dc8ce71e91a8befbb4692b6f5c10332486a3e630fd40546f1a8a402d468a00a.html.danger

  • Size

    38KB

  • Sample

    240528-hhxdsahf81

  • MD5

    ceec8c402ba7a6c62f2492f454baabb2

  • SHA1

    f7b365303eb5238b9f92fefcda448d7c29d25bed

  • SHA256

    4dc8ce71e91a8befbb4692b6f5c10332486a3e630fd40546f1a8a402d468a00a

  • SHA512

    b9be0d1206a305b77a2a35479e11a3d23c2fbeeb21bff12fd5d74014932fe9646a97f05881940ea2d66411c71e776522c51f8010d0a5803134021d8816bf80f2

  • SSDEEP

    768:tBL+oAZizxCmaptUR6lUYWGLYrpVKS+3xVvMFDUyEWqMIAw:f+oA0zxCmapioerpVKr3PGekIAw

Malware Config

Targets

    • Target

      4dc8ce71e91a8befbb4692b6f5c10332486a3e630fd40546f1a8a402d468a00a.html.danger

    • Size

      38KB

    • MD5

      ceec8c402ba7a6c62f2492f454baabb2

    • SHA1

      f7b365303eb5238b9f92fefcda448d7c29d25bed

    • SHA256

      4dc8ce71e91a8befbb4692b6f5c10332486a3e630fd40546f1a8a402d468a00a

    • SHA512

      b9be0d1206a305b77a2a35479e11a3d23c2fbeeb21bff12fd5d74014932fe9646a97f05881940ea2d66411c71e776522c51f8010d0a5803134021d8816bf80f2

    • SSDEEP

      768:tBL+oAZizxCmaptUR6lUYWGLYrpVKS+3xVvMFDUyEWqMIAw:f+oA0zxCmapioerpVKr3PGekIAw

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Command and Scripting Interpreter: AutoIT

      Using AutoIT for possible automate script.

    • Detected potential entity reuse from brand microsoft.

MITRE ATT&CK Enterprise v15

Tasks