Overview

overview

10

Static

static

4

Enimerotik...22.pdf

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    EnimerotikoForeon2022.pdf

  • Size

    162KB

  • Sample

    220214-nlwvbaafgm

  • MD5

    ec8f622a3cfae8c9883eb8bb440aaffb

  • SHA1

    c75c88fca5aa0ee80657326307fdbaf529cf0d5f

  • SHA256

    195fa2781235fbff1ee52d2b7cef7540a8dd076149586372876ccdb9a69d81f1

  • SHA512

    051e79c33ef1243f3a7e96f59d05b315d56d6cfdd3c3bf63059fd2079d0d4116ce3a18f3dd041fe00ab26148d5be9036c3dc7e0c71ffc9690a7149c5b8342eed

Score
10/10
linkpdf

Malware Config

Targets

    • Target

      EnimerotikoForeon2022.pdf

    • Size

      162KB

    • MD5

      ec8f622a3cfae8c9883eb8bb440aaffb

    • SHA1

      c75c88fca5aa0ee80657326307fdbaf529cf0d5f

    • SHA256

      195fa2781235fbff1ee52d2b7cef7540a8dd076149586372876ccdb9a69d81f1

    • SHA512

      051e79c33ef1243f3a7e96f59d05b315d56d6cfdd3c3bf63059fd2079d0d4116ce3a18f3dd041fe00ab26148d5be9036c3dc7e0c71ffc9690a7149c5b8342eed

    Score
    10/10

    • Suspicious use of NtCreateProcessExOtherParentProcess

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks