Overview

overview

7

Static

static

1

URLScan

urlscan

1

https://wearedevs.ne...

windows11-21h2-x64

7

https://wearedevs.ne...

android-9-x86

1

https://wearedevs.ne...

android-10-x64

1

https://wearedevs.ne...

android-11-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://wearedevs.net/exploits/?O=A

  • Sample

    241207-yjwrmsvrgq

Score
7/10
androidmicrosoftdiscoveryphishing

Malware Config

Targets

    • Target

      https://wearedevs.net/exploits/?O=A

    Score
    7/10
    microsoftdiscoveryphishing

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Legitimate hosting services abused for malware hosting/C2

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery

    • Detected potential entity reuse from brand MICROSOFT.

      phishingmicrosoft

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks