General
-
Target
Detalles Del Comparendo Por La CTE.tar.tbz2
-
Size
154KB
-
Sample
210226-bf2j851cjs
-
MD5
8a5f1164342cf43fae17bb9c9eba4df7
-
SHA1
5902e7f27684352907fbc10395a3ce96ec00ec88
-
SHA256
b449d5663be3cbffe900dd0d8cef92bab7f8e378c4626f860ae511b23b7058be
-
SHA512
e8bf2aecc4424335a77b6d51caa98bfe268147f7fbda55cee8a632357b8df34d9afeaa236881b51ae565be0c44413dbff27e7e9ca835a155d110b7f51507d881
Static task
static1
Behavioral task
behavioral1
Sample
Detalles Del Comparendo Por La CTE.js
Resource
win7v20201028
Behavioral task
behavioral2
Sample
Detalles Del Comparendo Por La CTE.js
Resource
win10v20201028
Malware Config
Targets
-
-
Target
Detalles Del Comparendo Por La CTE.js
-
Size
658KB
-
MD5
d6e145e5a98669b41b35b1ecda1d96a6
-
SHA1
bef627ba2e04899013ad2732d26d262453477c3f
-
SHA256
76f0269fadaf8730fa587c38fc72fda6ecdb1949894161dc6fdc69b5bba05ca9
-
SHA512
9506af2f6dc2ff9e6c50b5658bcdb27ccea5184bed8eac37005db20908dd332e006e78ffa2d4cd99acb3d3e59aa326b04f2cf28f39f1074edccd0a99b79f91d7
Score10/10-
Blocklisted process makes network request
-
Drops startup file
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-