Overview

overview

10

Static

static

3

mail.com.exe

windows7-x64

7

mail.com.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mail.com.exe

  • Size

    42KB

  • Sample

    240701-p2y52ssekg

  • MD5

    17fbc834b7ce83e295cbb7601a5a9899

  • SHA1

    901b686e1ef9729764a1145da1979a7621cf850f

  • SHA256

    004589df86e90096a63c78045cc7e1c328ea3863e904572dea5a64e576969b2a

  • SHA512

    c722ab16c433e2af8de91118ef731fb6ee147d221cc7ed70a49cc2fb7db84b2138132ca7f213745274ca1e4940d468833a210c2608b19ab78eee4cf368d21570

  • SSDEEP

    768:tdAkXGqv1GypfcHrk1DqAHNS/BHPmeWcTeYdC9VOV0rxAdeV1:tdAkXGqECcwYgw9PNSa0GQ

Score
10/10
microsoftpersistencephishingproduct:outlookupx

Malware Config

Targets

    • Target

      mail.com.exe

    • Size

      42KB

    • MD5

      17fbc834b7ce83e295cbb7601a5a9899

    • SHA1

      901b686e1ef9729764a1145da1979a7621cf850f

    • SHA256

      004589df86e90096a63c78045cc7e1c328ea3863e904572dea5a64e576969b2a

    • SHA512

      c722ab16c433e2af8de91118ef731fb6ee147d221cc7ed70a49cc2fb7db84b2138132ca7f213745274ca1e4940d468833a210c2608b19ab78eee4cf368d21570

    • SSDEEP

      768:tdAkXGqv1GypfcHrk1DqAHNS/BHPmeWcTeYdC9VOV0rxAdeV1:tdAkXGqECcwYgw9PNSa0GQ

    Score
    10/10
    persistenceupxmicrosoftphishingproduct:outlook
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

2
T1112

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks