a12e0ac33a927dc5d7596c903a21672a7fb1c1d5d1602f4523b561277305a876 | Triage

Sharing

General

Target

sample
Size

115KB
Sample

241105-jw3cmaxdrh
MD5

30524537889d5ad2b25d9c45d2a8b3aa
SHA1

a6bd57f8cc10714f44b06d9e8a33b5984450797b
SHA256

a12e0ac33a927dc5d7596c903a21672a7fb1c1d5d1602f4523b561277305a876
SHA512

9603239ba363c7ff40f14a1d05bd66aae1a8e159f90504a80008fd4abeef8698c71426322832d769458a894ed94c93c8dca15aabeb590ae481d12bf4be086590
SSDEEP

1536:8g1gX/UtGZ/X7ItkGpSlqKquBKquBKquBKquXbQQEMiAO6CIsd+Gih+p6l9x/0:yiGZ/XskGslybQPnI/Gco6l/0

Score

6^/10

steam discovery phishing

Malware Config

Targets

- Target
  
  sample
- Size
  
  115KB
- MD5
  
  30524537889d5ad2b25d9c45d2a8b3aa
- SHA1
  
  a6bd57f8cc10714f44b06d9e8a33b5984450797b
- SHA256
  
  a12e0ac33a927dc5d7596c903a21672a7fb1c1d5d1602f4523b561277305a876
- SHA512
  
  9603239ba363c7ff40f14a1d05bd66aae1a8e159f90504a80008fd4abeef8698c71426322832d769458a894ed94c93c8dca15aabeb590ae481d12bf4be086590
- SSDEEP
  
  1536:8g1gX/UtGZ/X7ItkGpSlqKquBKquBKquBKquXbQQEMiAO6CIsd+Gih+p6l9x/0:yiGZ/XskGslybQPnI/Gco6l/0
Score

6^/10

steam discovery phishing
- Legitimate hosting services abused for malware hosting/C2
- Detected potential entity reuse from brand STEAM.
  phishing steam
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

steamdiscoveryphishing