← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ClickFix Delivery Initiated via Phishing Email - Malasada Tech
WHITE malasada.tech 2024-12-28 Modified: 2025-01-26
12
IOCs
MEDIUM VOLUME
Here is the full text of my analysis of a phishing email that uses the ClickFix technique to deliver malware to victims.
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
ClickFix
Indicators of Compromise (12)
All FileHash-SHA256 hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 0a03217d57670da8be28758778191018beb2969ebc9dc256a8cd8d44f9e0ce2d 2024-12-28
FileHash-SHA256 71748095014a5aa05eff45f5a5df5667517b5387eedb986611118c2b8253cb14 2024-12-28
FileHash-SHA256 9afbc561e0751304580ee99efa62d73b85491811007c49c699116be794c00a04 2024-12-28
FileHash-SHA256 a6ab9895560376ac0755a3082905db556eb833ee596f8d9717f69f2d7608ad71 2024-12-28
FileHash-SHA256 a851990e7e5e2ebc0344defa1c365e9cf6d1abcd6d86bf70cab8e58b2b6a9772 2024-12-28
FileHash-SHA256 b774a082789e5ff1d7834b23977a66392fc755e2b1cd4d2827ef1de1806faefe 2024-12-28
FileHash-SHA256 b77ce57b7bb730b4a97727483795511be968e3a5f92442af2df3251338d85eda 2024-12-28
FileHash-SHA256 c13e06bc5cfc186646c857085388ceb179db9cb4db672d5af1ed9405cd2df0d8 2024-12-28
FileHash-SHA256 f301e718206f211056c988ebf02f6b9ebf591cd6590e536e3c7a197615ce6e3a 2024-12-28
hostname 16-iuohfsjhfkjhgkjfdhggfkj.s3.us-east-2.amazonaws.com 2024-12-28
hostname againg.s3.us-east-2.amazonaws.com 2024-12-28
hostname fat-dezembro1.s3.us-east-2.amazonaws.com 2024-12-28
References (1)
↗ https://malasada.tech/clickfix-delivery-initiated-via-phishing-email/