4ad3965e3bb8fd1c105bed210e29d10e3006c7da51ce890bef72ed18c3bb8341 | Triage

Sharing

General

Target

downloaded_package.zip
Size

16.9MB
Sample

241106-jkmssswdqd
MD5

1c4b33dc9a796e2ca14a04ac707665dc
SHA1

f88b76e9bfd0a43fc214b9dedaab68127c571662
SHA256

4ad3965e3bb8fd1c105bed210e29d10e3006c7da51ce890bef72ed18c3bb8341
SHA512

d071b8c75f217dab29d1c373a2ac5f5d2e752029f35b243e4dfb1c31e17ec5570c70d89e965fd552296d3d40972c69f85d1be027295bca609ab0127deb417d3e
SSDEEP

393216:Ab4chEApo0cNn41FrjIKxpfEGb+uMAXfBcc1c7d0GPNAf04T5pgft:C2Ap9qn41Fw6E/nAXfBhcZ1PNgu

Score

10^/10

google discovery phishing

Malware Config

Targets

- Target
  
  Setup.exe
- Size
  
  323.3MB
- MD5
  
  13c409eb7f2162cf52520148a583564d
- SHA1
  
  54fe711b31ca2c6089107a810e9d9c7870ecb5e9
- SHA256
  
  e997c1f09bdc774395eef596be2d52797ff7f2633ebe09242c944860242e2ea7
- SHA512
  
  d0f2a18d525b636439f6b539c9a1018adbfc53a33aa25b6c09b6da8c32f2da0afb00332888fd746b943e923089fa885d0004957e1ae8c503935a067af4d9ffcb
- SSDEEP
  
  196608:rVL/tnHG7iqQhlUSMLn8dDAohBDPBRAOtKOrqh/XM3T1+iaVufV43KKjfpyx9uWp:rV7tnHcnUh5djv
Score

10^/10

google discovery phishing
- Detected google phishing page
  phishing google
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

googlediscoveryphishing

behavioral2