670e6cfe8ffded59575d5770f5685f2be005bd4352a9687b860282d4258a4cf7 | Triage

Submit
Reports

Overview

overview

8

Static

static

13,pdf.ppam

windows7_x64

8

13,pdf.ppam

windows10_x64

1

Sharing

General

Target

13,pdf.ppam
Size

8KB
Sample

210810-mrpgqgz42x
MD5

442e555300c8fc9f23d2541b50cd5683
SHA1

44ced2fda2806966ac9cb596959d75c9da9929f6
SHA256

670e6cfe8ffded59575d5770f5685f2be005bd4352a9687b860282d4258a4cf7
SHA512

dd30dd89e8cbeace09434827799aef747b747bb83315d746ce8410da34620a6bac35981ff02c86d3dbd51ce9801b8d9a610290ac3c7c2b1fe9497614e67d5a26

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

13,pdf.ppam

Resource

win7v20210408

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

13,pdf.ppam

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  13,pdf.ppam
- Size
  
  8KB
- MD5
  
  442e555300c8fc9f23d2541b50cd5683
- SHA1
  
  44ced2fda2806966ac9cb596959d75c9da9929f6
- SHA256
  
  670e6cfe8ffded59575d5770f5685f2be005bd4352a9687b860282d4258a4cf7
- SHA512
  
  dd30dd89e8cbeace09434827799aef747b747bb83315d746ce8410da34620a6bac35981ff02c86d3dbd51ce9801b8d9a610290ac3c7c2b1fe9497614e67d5a26
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy