Overview

overview

8

Static

static

1

Download - MEGA.html

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Download - MEGA.html

  • Size

    300KB

  • Sample

    241121-j6rnwazcmc

  • MD5

    3db8808a46c62b885f6bb4b19ff980e9

  • SHA1

    2a72c56832a86fb279cc0f622dd6ad6ac63276cd

  • SHA256

    1e1a59adf3878ce3ffa3ad2f8f00abcb7d1da6166df3be96189fb7a125549203

  • SHA512

    5955f91ed27309e83b2314ac32c5bb73d336e12923397dfea52c6315ab82493cb75a4b31bc956695dd41985538ed45bb862700fcc11bc0843191ea7bb2c72209

  • SSDEEP

    3072:M5XxIMnmLFRVCaMxle+wCd5XyzrzUxsDVhjpmajR26jhAqb1:M5BIrCPArXVhjpmajRK4

Score
8/10
collectiondiscovery

Malware Config

Targets

    • Target

      Download - MEGA.html

    • Size

      300KB

    • MD5

      3db8808a46c62b885f6bb4b19ff980e9

    • SHA1

      2a72c56832a86fb279cc0f622dd6ad6ac63276cd

    • SHA256

      1e1a59adf3878ce3ffa3ad2f8f00abcb7d1da6166df3be96189fb7a125549203

    • SHA512

      5955f91ed27309e83b2314ac32c5bb73d336e12923397dfea52c6315ab82493cb75a4b31bc956695dd41985538ed45bb862700fcc11bc0843191ea7bb2c72209

    • SSDEEP

      3072:M5XxIMnmLFRVCaMxle+wCd5XyzrzUxsDVhjpmajR26jhAqb1:M5BIrCPArXVhjpmajRK4

    Score
    8/10
    collectiondiscovery

    • Contacts a large (962) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Clipboard Data

      Adversaries may collect data stored in the clipboard from users copying information within or between applications.

      collection

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks