b6129cbb04b56add0cecefe73fcb25f30bc35c98cc90ee14cbda9b8b773a0a99 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

FluxTeam.7z

windows10-2004-x64

7

Resubmissions

08-12-2024 04:22

241208-eznw7axncr 8

08-12-2024 04:18

241208-ewyxzsxmaq 7

Sharing

General

Target

FluxTeam.7z
Size

20.8MB
Sample

241208-ewyxzsxmaq
MD5

712567a666b820cda4fcea9cf5dc6b61
SHA1

efb6f5378de5120b60152c8a3366b6d0d8b536f5
SHA256

b6129cbb04b56add0cecefe73fcb25f30bc35c98cc90ee14cbda9b8b773a0a99
SHA512

707e8260d3dce6d884ec18c74b6ec6f81e707b0117ce45f88a595f9ccc3f16b357e36ef5f4bd8c5c15c9ff4b9496d23d0e3378194f1e4df936e36ecd5a591d3f
SSDEEP

393216:iETU+8dwON1Dy0fxtgtpKzwNFffPcGZRpDaLX7hJ9qvzZWJxy1h:iETUECJy0fzgtIzwk+RpU7EVGED

Score

7^/10

microsoft discovery phishing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

FluxTeam.7z

Resource

win10v2004-20241007-en

microsoft discovery phishing

windows10-2004-x64

21 signatures

120 seconds

Malware Config

Targets

- Target
  
  FluxTeam.7z
- Size
  
  20.8MB
- MD5
  
  712567a666b820cda4fcea9cf5dc6b61
- SHA1
  
  efb6f5378de5120b60152c8a3366b6d0d8b536f5
- SHA256
  
  b6129cbb04b56add0cecefe73fcb25f30bc35c98cc90ee14cbda9b8b773a0a99
- SHA512
  
  707e8260d3dce6d884ec18c74b6ec6f81e707b0117ce45f88a595f9ccc3f16b357e36ef5f4bd8c5c15c9ff4b9496d23d0e3378194f1e4df936e36ecd5a591d3f
- SSDEEP
  
  393216:iETU+8dwON1Dy0fxtgtpKzwNFffPcGZRpDaLX7hJ9qvzZWJxy1h:iETUECJy0fzgtIzwk+RpU7EVGED
Score

7^/10

microsoft discovery phishing
- A potential corporate email address has been identified in the URL: [email protected]
  phishing
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Detected potential entity reuse from brand MICROSOFT.
  phishing microsoft
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

microsoftdiscoveryphishing

© 2018-2025

Terms | Privacy