Overview

overview

10

Static

static

5

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f2c7fd24c396ffbaaed3c698ef0dbcd16b873b8570899388790e4dd9f36dfbbb

  • Size

    894KB

  • Sample

    240627-3h6bxayclf

  • MD5

    72e691aca18a199dcd3724848acb186e

  • SHA1

    79069feb8b8ddc3898241b7e3badd9b6b7ac9b0e

  • SHA256

    f2c7fd24c396ffbaaed3c698ef0dbcd16b873b8570899388790e4dd9f36dfbbb

  • SHA512

    eeab474889cab47d1f1325dd12989e83bb71e19b8f29f8fc03ded521cf611d35ac45989bb042cf0d1bc347ed4351fa2c5c31d8d68690978b44d97bb7e39f6522

  • SSDEEP

    12288:+qDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDga4TY:+qDEvCTbMWu7rQYlBQcBiT6rprG8aAY

Score
10/10
googlephishing

Malware Config

Targets

    • Target

      f2c7fd24c396ffbaaed3c698ef0dbcd16b873b8570899388790e4dd9f36dfbbb

    • Size

      894KB

    • MD5

      72e691aca18a199dcd3724848acb186e

    • SHA1

      79069feb8b8ddc3898241b7e3badd9b6b7ac9b0e

    • SHA256

      f2c7fd24c396ffbaaed3c698ef0dbcd16b873b8570899388790e4dd9f36dfbbb

    • SHA512

      eeab474889cab47d1f1325dd12989e83bb71e19b8f29f8fc03ded521cf611d35ac45989bb042cf0d1bc347ed4351fa2c5c31d8d68690978b44d97bb7e39f6522

    • SSDEEP

      12288:+qDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDga4TY:+qDEvCTbMWu7rQYlBQcBiT6rprG8aAY

    Score
    10/10
    googlephishing

    • Detected google phishing page

      phishinggoogle

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks