fa7eacede9aaba0fcddcf1ecf291880edb0466f65d4de5d51dc9a196720b9458 | Triage

Sharing

General

Target

f4995ed0168b94d68b7b5f60d9ffc356_JaffaCakes118
Size

38KB
Sample

241215-st2gzszpej
MD5

f4995ed0168b94d68b7b5f60d9ffc356
SHA1

cc826eae29f9a7cee30d67fab864d926de697198
SHA256

fa7eacede9aaba0fcddcf1ecf291880edb0466f65d4de5d51dc9a196720b9458
SHA512

e32f78f25f646d4c30334dcd514dde27e5b9f9d3cadbfbaddaf17bbdd9cb533f08134d9531736d9859233daadb8556cac102d7f0ed8df047fc02efd4a0429406
SSDEEP

384:CFJB+vri8FLx8ocstx8LFCMfUVBvFjgXZyZmsAAque87quYqu/QK7quAwQ37quvX:CFj+veQVdZ8amfAV7+n7qwg7h7N7pBN

Score

7^/10

microsoft discovery phishing

Malware Config

Targets

- Target
  
  f4995ed0168b94d68b7b5f60d9ffc356_JaffaCakes118
- Size
  
  38KB
- MD5
  
  f4995ed0168b94d68b7b5f60d9ffc356
- SHA1
  
  cc826eae29f9a7cee30d67fab864d926de697198
- SHA256
  
  fa7eacede9aaba0fcddcf1ecf291880edb0466f65d4de5d51dc9a196720b9458
- SHA512
  
  e32f78f25f646d4c30334dcd514dde27e5b9f9d3cadbfbaddaf17bbdd9cb533f08134d9531736d9859233daadb8556cac102d7f0ed8df047fc02efd4a0429406
- SSDEEP
  
  384:CFJB+vri8FLx8ocstx8LFCMfUVBvFjgXZyZmsAAque87quYqu/QK7quAwQ37quvX:CFj+veQVdZ8amfAV7+n7qwg7h7N7pBN
Score

7^/10

discovery microsoft phishing
- A potential corporate email address has been identified in the URL: logo@e9bd13f7
  phishing
- Detected potential entity reuse from brand MICROSOFT.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftdiscoveryphishing