Overview

overview

8

Static

static

1

URLScan

urlscan

http://noescape.exe

windows11-21h2-x64

8

Resubmissions

24-12-2024 20:26

241224-y7zs7swpbz 7

24-12-2024 20:24

241224-y6plvawng1 7

24-12-2024 20:11

241224-yyndtawma1 3

24-12-2024 03:17

241224-dtfsyszrfy 7

19-12-2024 22:19

241219-18ntfasjer 3

19-12-2024 22:15

241219-16jfya1nft 4

19-12-2024 22:14

241219-15qtmasjaj 3

16-12-2024 01:31

241216-bxgtbaynbj 10

15-12-2024 19:21

241215-x219eawjbk 8

15-12-2024 04:23

241215-ezyfmawkbq 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    http://noescape.exe

  • Sample

    241204-b84gfs1kcr

Score
8/10
discoverymotwphishing

Malware Config

Targets

    • Target

      http://noescape.exe

    Score
    8/10
    discoverymotwphishing

    • Downloads MZ/PE file

    • A potential corporate email address has been identified in the URL: css@3

      phishing

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

      phishingmotw
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks