General

  • Target

    recaptcha-verify

  • Size

    3KB

  • Sample

    241110-zw7v4svket

  • MD5

    24cf3225a2ba4dad56c69118dbdd9e98

  • SHA1

    073127446571c75a93ab3de3ef2f705399df27a8

  • SHA256

    b2f3bcd352d2b460a1b8b6388a47d21f95c661cbf62e43188d70d0bb2ce935d0

  • SHA512

    c75b5fd3e07a3ba33fe5241529e57e2a705784d939ff8c175b4f829024c0015d9a874823bd2ea5a5627c066e499988850eb80586e25e3af16b3efb975d9457cd

Malware Config

Targets

    • Target

      recaptcha-verify

    • Size

      3KB

    • MD5

      24cf3225a2ba4dad56c69118dbdd9e98

    • SHA1

      073127446571c75a93ab3de3ef2f705399df27a8

    • SHA256

      b2f3bcd352d2b460a1b8b6388a47d21f95c661cbf62e43188d70d0bb2ce935d0

    • SHA512

      c75b5fd3e07a3ba33fe5241529e57e2a705784d939ff8c175b4f829024c0015d9a874823bd2ea5a5627c066e499988850eb80586e25e3af16b3efb975d9457cd

    • Blocklisted process makes network request

    • A potential corporate email address has been identified in the URL: [email protected]

    • Legitimate hosting services abused for malware hosting/C2

    • Detected potential entity reuse from brand GOOGLE.

MITRE ATT&CK Enterprise v15

Tasks