Resubmissions

14-11-2024 19:12

241114-xwnq5asbqr 8

14-11-2024 17:14

241114-vryz7avmhm 7

14-11-2024 15:28

241114-swc76s1dnk 7

General

  • Target

    download.jpeg

  • Size

    4KB

  • Sample

    241114-swc76s1dnk

  • MD5

    923483ef136405ae231fd91ae76fdfca

  • SHA1

    3be3a83a5c330463b407585f7cfd2c4860f1594f

  • SHA256

    bd86b89c66706bcdab4a02763a8dab5cb02dadd671377d5619689c6c9047d586

  • SHA512

    b3c2c74d61b45d7677a04a127b0500e4b7cc9dfaadb0ad0a85a905f0dca2c8375bbba07d80acd5a795b572383c61dde16683e1e448a8c3b45cdfce622bb71a7d

  • SSDEEP

    96:YgUi3uZKoBRrq5YNVDfDUXd9LdTkpKp4k/VR+gdTwghH7IVfAReACf:18KqeyNFg3Ld5lTxHu5N

Malware Config

Targets

    • Target

      download.jpeg

    • Size

      4KB

    • MD5

      923483ef136405ae231fd91ae76fdfca

    • SHA1

      3be3a83a5c330463b407585f7cfd2c4860f1594f

    • SHA256

      bd86b89c66706bcdab4a02763a8dab5cb02dadd671377d5619689c6c9047d586

    • SHA512

      b3c2c74d61b45d7677a04a127b0500e4b7cc9dfaadb0ad0a85a905f0dca2c8375bbba07d80acd5a795b572383c61dde16683e1e448a8c3b45cdfce622bb71a7d

    • SSDEEP

      96:YgUi3uZKoBRrq5YNVDfDUXd9LdTkpKp4k/VR+gdTwghH7IVfAReACf:18KqeyNFg3Ld5lTxHu5N

    • A potential corporate email address has been identified in the URL: web-vitals@3

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

MITRE ATT&CK Enterprise v15

Tasks