1ea34acc7fe54f7402beae14ecb67919196853c916b8fa5e2f969124eea5219f | Triage

Sharing

General

Target

ecf1910aed8347440181d5423b1f5974_JaffaCakes118
Size

38KB
Sample

241213-13nw9azlcy
MD5

ecf1910aed8347440181d5423b1f5974
SHA1

96bd934f4db794a699cc7032fa9ba9367144cf6d
SHA256

1ea34acc7fe54f7402beae14ecb67919196853c916b8fa5e2f969124eea5219f
SHA512

c672ea399100a244908832189c8a4ccb9828933be3972e649e59782fae17dafba6f95e1b2a93efc0819191f2e4255d6c60e35e6495d82db49e155b8eed0c41dd
SSDEEP

384:CFJB+vri8FLx8ocstx8LFCMfUVBvFjgXZyZmsAAque87quYqu/QK7quAwQ37quva:CFj+veQVdZ8amfAV7+n7qwg7h7N7pKN

Score

7^/10

microsoft discovery phishing

Malware Config

Targets

- Target
  
  ecf1910aed8347440181d5423b1f5974_JaffaCakes118
- Size
  
  38KB
- MD5
  
  ecf1910aed8347440181d5423b1f5974
- SHA1
  
  96bd934f4db794a699cc7032fa9ba9367144cf6d
- SHA256
  
  1ea34acc7fe54f7402beae14ecb67919196853c916b8fa5e2f969124eea5219f
- SHA512
  
  c672ea399100a244908832189c8a4ccb9828933be3972e649e59782fae17dafba6f95e1b2a93efc0819191f2e4255d6c60e35e6495d82db49e155b8eed0c41dd
- SSDEEP
  
  384:CFJB+vri8FLx8ocstx8LFCMfUVBvFjgXZyZmsAAque87quYqu/QK7quAwQ37quva:CFj+veQVdZ8amfAV7+n7qwg7h7N7pKN
Score

7^/10

discovery microsoft phishing
- A potential corporate email address has been identified in the URL: logo@e9bd13f7
  phishing
- Detected potential entity reuse from brand MICROSOFT.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftdiscoveryphishing