bdb22f09d49667e590d7a5d513abbf0200877f2eac83e33718fd6d3c61171b6b | Triage

Sharing

General

Target

sample
Size

53KB
Sample

250123-1g81astrhz
MD5

2e38d4715b6d15efef899dde9896dd60
SHA1

7afb7e687ffbd89bcce6896649021f9452c77a79
SHA256

bdb22f09d49667e590d7a5d513abbf0200877f2eac83e33718fd6d3c61171b6b
SHA512

0df874f94f25f2187c9fa087b503d09df856f460c921a57943b421221582499d78aa4a83ca29d0a0acbccd570ac876941abdf07827ca452e14ed4dda386302b2
SSDEEP

1536:269UFuCyuZ+/oKHQWpSjSqkcAEN2gRI6ZsnVJr3S5Yavo6V/lh9T674Qscl1+CSr:x9UFuYc/oKHQWpSjSqkcAEN2gRI6Zsnu

Score

8^/10

steam discovery execution phishing

Malware Config

Targets

- Target
  
  sample
- Size
  
  53KB
- MD5
  
  2e38d4715b6d15efef899dde9896dd60
- SHA1
  
  7afb7e687ffbd89bcce6896649021f9452c77a79
- SHA256
  
  bdb22f09d49667e590d7a5d513abbf0200877f2eac83e33718fd6d3c61171b6b
- SHA512
  
  0df874f94f25f2187c9fa087b503d09df856f460c921a57943b421221582499d78aa4a83ca29d0a0acbccd570ac876941abdf07827ca452e14ed4dda386302b2
- SSDEEP
  
  1536:269UFuCyuZ+/oKHQWpSjSqkcAEN2gRI6ZsnVJr3S5Yavo6V/lh9T674Qscl1+CSr:x9UFuYc/oKHQWpSjSqkcAEN2gRI6Zsnu
Score

8^/10

steam discovery execution phishing
- Downloads MZ/PE file
- Detected potential entity reuse from brand STEAM.
  phishing steam
- Probable phishing domain
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Phishing

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

steamdiscoveryexecutionphishing