b4d1f0c0b99c6abafddcb654aef4b8c93a8704f40af5970d7317751e2af4eaf9 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

4ccp359.jpg

windows10-2004-x64

8

Sharing

General

Target

4ccp359.jpg
Size

70KB
Sample

240626-26y23azapb
MD5

34f410ad1ff68298fc0a3ce912e5c78b
SHA1

12c800a2e7a939d49fe4a150a621f55bd8cba24c
SHA256

b4d1f0c0b99c6abafddcb654aef4b8c93a8704f40af5970d7317751e2af4eaf9
SHA512

0aa714524c6b2686556d0fb246ac66d4cfa354f8555eb32b7229cb9ab1bcd41759ecc99cde1fce92e971f2279c9ccb4fc13b0ad9977425038c37e6e010bc5f1b
SSDEEP

1536:nwSz6b/d5ORv1KegYrViOQqhpxyQbsYMufhCzrIR5ZGL3zeZP:nwDnORvU8rPbhpx1YYZczMRb/P

Score

8^/10

microsoft phishing

Static task

static1

Behavioral task

behavioral1

Sample

4ccp359.jpg

Resource

win10v2004-20240508-en

microsoft phishing

windows10-2004-x64

16 signatures

1800 seconds

Malware Config

Targets

- Target
  
  4ccp359.jpg
- Size
  
  70KB
- MD5
  
  34f410ad1ff68298fc0a3ce912e5c78b
- SHA1
  
  12c800a2e7a939d49fe4a150a621f55bd8cba24c
- SHA256
  
  b4d1f0c0b99c6abafddcb654aef4b8c93a8704f40af5970d7317751e2af4eaf9
- SHA512
  
  0aa714524c6b2686556d0fb246ac66d4cfa354f8555eb32b7229cb9ab1bcd41759ecc99cde1fce92e971f2279c9ccb4fc13b0ad9977425038c37e6e010bc5f1b
- SSDEEP
  
  1536:nwSz6b/d5ORv1KegYrViOQqhpxyQbsYMufhCzrIR5ZGL3zeZP:nwDnORvU8rPbhpx1YYZczMRb/P
Score

8^/10

microsoft phishing
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

microsoftphishing

© 2018-2024

Terms | Privacy