Overview

overview

7

Static

static

1

Conditonal...la.png

windows10-ltsc 2021-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Conditonal Release p2 Valenzuela.png

  • Size

    1.6MB

  • Sample

    241130-ctb94axlgt

  • MD5

    3ceaa4b9a30bbc77c041c0298c81018d

  • SHA1

    e32c8d8c03be3e007f42f90aa49c215dfa01f39d

  • SHA256

    2ba82b8f5016c1dc8092b744eef1d52f6580394b311689b77f17d3aaea30cb1e

  • SHA512

    ad7d43807635c9a5e445f19ae20ec24ff47041e73a0e63232b7efcca99c9f9275e7bb6fc330625ab8527222cbde6784ac2365228072cd79e7711452da48560e4

  • SSDEEP

    49152:Yjc/is1kgLA3LZ4Es712L4vPR/IeYYHzE3gzAZVfxoVVxM:mHAQ14DZjvVWqzJy5oVE

Score
7/10
microsoftdiscoveryphishing

Malware Config

Targets

    • Target

      Conditonal Release p2 Valenzuela.png

    • Size

      1.6MB

    • MD5

      3ceaa4b9a30bbc77c041c0298c81018d

    • SHA1

      e32c8d8c03be3e007f42f90aa49c215dfa01f39d

    • SHA256

      2ba82b8f5016c1dc8092b744eef1d52f6580394b311689b77f17d3aaea30cb1e

    • SHA512

      ad7d43807635c9a5e445f19ae20ec24ff47041e73a0e63232b7efcca99c9f9275e7bb6fc330625ab8527222cbde6784ac2365228072cd79e7711452da48560e4

    • SSDEEP

      49152:Yjc/is1kgLA3LZ4Es712L4vPR/IeYYHzE3gzAZVfxoVVxM:mHAQ14DZjvVWqzJy5oVE

    Score
    7/10
    microsoftdiscoveryphishing

    • A potential corporate email address has been identified in the URL: [email protected]

      phishing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand MICROSOFT.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks