Overview

overview

8

Static

static

1

flight-reacts.gif

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    flight-reacts.gif

  • Size

    5.6MB

  • Sample

    241015-sgmhas1clc

  • MD5

    ed55d593922ef12d77e75310860cfdf6

  • SHA1

    20f9ad4834d89ee8d69d66d9e77e17bd651302c2

  • SHA256

    45e886b7fa0388d9fcfa88f97cc8a8426f6739da70610bcf8d06f3168aaf5acf

  • SHA512

    9aadcfd8ac4900380facd92955906f13b5322cbb9e09aaa0b6066e974dda8d6092ed480b80d3a2f03f16e293a3e85ba0f0e85a17646835e20b75827f4a02f351

  • SSDEEP

    98304:tHPwCfv97vlFT1qLT6hOZtG2O5CQnOU7JXzwfoLoAzkuMafs5wo:CwPqLT8+hriOU7hZtktafs5wo

Score
8/10
steamdiscoveryphishing

Malware Config

Targets

    • Target

      flight-reacts.gif

    • Size

      5.6MB

    • MD5

      ed55d593922ef12d77e75310860cfdf6

    • SHA1

      20f9ad4834d89ee8d69d66d9e77e17bd651302c2

    • SHA256

      45e886b7fa0388d9fcfa88f97cc8a8426f6739da70610bcf8d06f3168aaf5acf

    • SHA512

      9aadcfd8ac4900380facd92955906f13b5322cbb9e09aaa0b6066e974dda8d6092ed480b80d3a2f03f16e293a3e85ba0f0e85a17646835e20b75827f4a02f351

    • SSDEEP

      98304:tHPwCfv97vlFT1qLT6hOZtG2O5CQnOU7JXzwfoLoAzkuMafs5wo:CwPqLT8+hriOU7hZtktafs5wo

    Score
    8/10
    steamdiscoveryphishing

    • Downloads MZ/PE file

    • Detected potential entity reuse from brand STEAM.

      phishingsteam
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks