Advent of Cyber 2022 [Day 12]-Malware Analysis Forensic McBlue to the REVscue! Write up
Tags
attack-pattern: Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID f34bf660-c17f-4d8c-b45b-a0ecde7d51a9
Fingerprint 853c3c4b1fab0ed1
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 13, 2022, 10:28 a.m.
Added to db Dec. 13, 2022, 1:10 p.m.
Last updated Nov. 12, 2024, 3:53 p.m.
Headline Advent of Cyber 2022 [Day 12]-Malware Analysis Forensic McBlue to the REVscue! Write up
Title Advent of Cyber 2022 [Day 12]-Malware Analysis Forensic McBlue to the REVscue! Write up
Detected Hints/Tags/Attributes 25/1/8
Source URLs
Redirection Url
Details Source https://infosecwriteups.com/advent-of-cyber-2022-day-12-malware-analysis-forensic-mcblue-to-the-revscue-write-up-44fc80e95c7?gi=22f4c188b4bc&source=rss----7b722bfd1b8d---4
URL Provider
Details Provider Source level domain
Details infosecwriteups.com infosecwriteups.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 97 
virustotal.com
Details File 4 
mysterygift.exe
Details File 3 
c:\users\administrator\appdata\roaming\microsoft\windows\start menu\programs\startup\wishes.bat
Details File 74 
test.jpg
Details File 3 
wishes.bat
Details File 75 
favicon.ico
Details Url 1 
http://bestfestivalcompany.thm/favicon.ico
Details Windows Registry Key 188 
HKCU\Software\Microsoft\Windows\CurrentVersion\Run