ed4b5505ac6b34adf2553db0bd5ab252047dcbc1f89e762ba2bb376f106c32f2 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

argon

windows10-ltsc 2021-x64

7

Resubmissions

23-12-2024 19:08

241223-xtny4syjaq 7

23-12-2024 19:01

241223-xppd3sxqev 6

Sharing

General

Target

argon
Size

272KB
Sample

241223-xtny4syjaq
MD5

00c7958999ac0e2e89aacbf98463da3b
SHA1

ebdec072a0b0c402f52d0ea2531d3e7fbb1239f0
SHA256

ed4b5505ac6b34adf2553db0bd5ab252047dcbc1f89e762ba2bb376f106c32f2
SHA512

7890329ba8750296587a2477d5c2ac4992cd56b6e036af7fc78f4a771641bb83363b560fa9e1a9d31116217750a7ae903bff860ce7030331d0a9d5501217837b
SSDEEP

6144:sPNPRpOL/saqkPV9FemLtcIDSsmwm9SvZJT3CqbMrhryf65NRPaCieMjAkvCJv1G:qNPRpOL/saqkPV9FemLtcIDSsmwm9SvP

Score

7^/10

microsoft discovery phishing

Static task

static1

Behavioral task

behavioral1

Sample

argon

Resource

win10ltsc2021-20241211-en

microsoft discovery phishing

windows10-ltsc 2021-x64

17 signatures

300 seconds

Malware Config

Targets

- Target
  
  argon
- Size
  
  272KB
- MD5
  
  00c7958999ac0e2e89aacbf98463da3b
- SHA1
  
  ebdec072a0b0c402f52d0ea2531d3e7fbb1239f0
- SHA256
  
  ed4b5505ac6b34adf2553db0bd5ab252047dcbc1f89e762ba2bb376f106c32f2
- SHA512
  
  7890329ba8750296587a2477d5c2ac4992cd56b6e036af7fc78f4a771641bb83363b560fa9e1a9d31116217750a7ae903bff860ce7030331d0a9d5501217837b
- SSDEEP
  
  6144:sPNPRpOL/saqkPV9FemLtcIDSsmwm9SvZJT3CqbMrhryf65NRPaCieMjAkvCJv1G:qNPRpOL/saqkPV9FemLtcIDSsmwm9SvP
Score

7^/10

microsoft discovery phishing
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Detected potential entity reuse from brand MICROSOFT.
  phishing microsoft
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

microsoftdiscoveryphishing

© 2018-2025

Terms | Privacy