Static task
static1
General
-
Target
FW- CALLER LEFT A MSG 00-01-30 DURATION- ab2e352253676a7c8c5e91175b5a9869f8e6-CHAR10.eml
-
Size
1.1MB
-
MD5
ea2c02231877c2941d93b2991e453caf
-
SHA1
7d425ca8fb66f65e5ab44e3c8c1dd9903511c482
-
SHA256
69b6464aae98f99db2c777b0e4d6d2114f7b52817511a76ac457d644b8afbd09
-
SHA512
bb7883818cdf7ab9b4328ead0a6b2214fc55dadbe560d46e575d7a9e30fcfafbaf90d69ea0b848a9299cae492b1ed04bacf51eeffad67781def84c94db68a6f8
-
SSDEEP
24576:EuhEdRIw0terEaBVDqMU5VFkn2mrSWf2eG+ynSqw/FEP6SjQTMwUQEdxfi:1QF3vBVFXcQ
Malware Config
Signatures
Files
-
FW- CALLER LEFT A MSG 00-01-30 DURATION- ab2e352253676a7c8c5e91175b5a9869f8e6-CHAR10.eml.eml
Password: infected
-
http://www.polarisengineering.nl/
-
https://eur06.safelinks.protection.outlook.com/?url=
-
https://go.microsoft.com/fwlink/?LinkId=271181&clcid=0x1c09
-
https://go.microsoft.com/fwlink/?LinkId=521839&clcid=0x1c09
-
https://iriscmsproddatastorage.azureedge.net/assets/36/6b/366ba53f-a1c2-4457-b064-aa6297f4e419.png?n=ms_logo_g_double.png
-
https://mucp.api.account.microsoft.com/m/v2/v?d=AIAADJNNDPMML6LDW7WS5RQKONO223OWLTKLZRRVN7P4P7ZBTZENZTC6LO2ICTRJBY36EXWK4UJ44FHBCHMYVYYDUQ4YWSXJ643UHIRPNL3GKD2CL3WGI5WBYOKQMFA2FJCV4IRXML3NMDZF5QPJBDJW453HLAI&i=AIAAC7PVG7DGF2JCNDNPSRZP6EPD5TS74YCMFSY5JBZEQXURPJWLRDXERFRR7XDJ6JGC7QDPLBSWBNDMICO6OLPKPX3BFN43C7IZX5JYK5CXDKQFWLO3SZ5R3EQ22DALSXDQ3KHQ3SWREBBUO3O6QHLUKNFZDLB2BAPXBDXFGM2QSG7PDWMI4TWN2OVPVHU3RSE2AR2SZNMMVEGY5Y2FLLQTO2UTWIJQU26DB3KQ7BTN57COOHKEPXQ6H7DWH3R6T26TSQW26LRZDZMI2ZGUIZLMQPD3URQ
-
https://www.google.md/url?url=https://demeropkdfzdbi&uxzs=zemleptc&icmeyuc=zn0&ywprgz=icmeyuc&uxzs=zemleptc&ywprgz=icmeyuc&fzdbi=demeropkd&znzn=ywprgzuxzs&q=amp%2Fdecentafrica.com%2Flok%2F1025245669%2Fai5wb3N0QHBvbGFyaXNlbmdpbmVlcmluZy5ubA==
-
https://www.virustotal.com/gui/url/daee68b89e0b61429d382888ef04f8b413995f257e6aaaf20c94470fa1881187
-
-
email-html-2.txt.html
-
email-plain-1.txt
-
image001.jpg
-
image002.png.png
Password: infected