General

  • Target

    GiveUpRobot2.swf

  • Size

    5.9MB

  • Sample

    241114-t78nws1jdw

  • MD5

    80bd256624a3045ee0fe0a222aea723b

  • SHA1

    d177e3f7cb80ac46294de912707a91a8ef581437

  • SHA256

    f1e9066cd57c80b304551071718cc9feb5fdceaf3d91acabdd1fd3b7aab25cb2

  • SHA512

    67ac90139a0bbf236e48cdc49d8a8b107c2ecd0c60ab64db52bc83a56d9a982a68ffd3c25937fb8a016c887075333f0a8fbed386b1c8d1a7a5abbc803ba074eb

  • SSDEEP

    98304:qtBqQkNwqhmJ5Sp8flaC6pf925kGlLhm4cJDtHSDzGGsy1CIesqksxBbfR:CYRgWp8taCSl5EL0xJxyQy1CIcfR

Malware Config

Targets

    • Target

      GiveUpRobot2.swf

    • Size

      5.9MB

    • MD5

      80bd256624a3045ee0fe0a222aea723b

    • SHA1

      d177e3f7cb80ac46294de912707a91a8ef581437

    • SHA256

      f1e9066cd57c80b304551071718cc9feb5fdceaf3d91acabdd1fd3b7aab25cb2

    • SHA512

      67ac90139a0bbf236e48cdc49d8a8b107c2ecd0c60ab64db52bc83a56d9a982a68ffd3c25937fb8a016c887075333f0a8fbed386b1c8d1a7a5abbc803ba074eb

    • SSDEEP

      98304:qtBqQkNwqhmJ5Sp8flaC6pf925kGlLhm4cJDtHSDzGGsy1CIesqksxBbfR:CYRgWp8taCSl5EL0xJxyQy1CIcfR

    • Detected google phishing page

    • A potential corporate email address has been identified in the URL: 6633dd5dcff475e6fb744426_&@2x.png

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks