Overview

overview

4

Static

static

4

Invoice_IN...63.pdf

windows10-2004_x64

1

LifeShare ...19.pdf

windows10-2004_x64

1

LifeShare ...OF.pdf

windows10-2004_x64

1

LifeShare ...SA.pdf

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Invoice # INV58780163 from RingCentral (UID - 367895048).msg

  • Size

    1.6MB

  • Sample

    220314-xmkccadcap

  • MD5

    43043c809e48efec0f60d47fda236567

  • SHA1

    c25538673e315027986ef6187ec3a708384a876e

  • SHA256

    13ecb35ec660161bb8b41e544eb5e4c58a51e60451fc809d04d49934135df044

  • SHA512

    d72dc50c0428a7b680b52a095b2c38c84c90ed6b2af40414c8d60167ec85b8dbad46c608914dd6332cb114d3e0e22bb5916c7d9a7d657de4d633e863dbc4e9d2

Score
4/10
linkpdf

Malware Config

Targets

    • Target

      Invoice_INV58780163.pdf

    • Size

      75KB

    • MD5

      badd9c501c317a2de2597cfe826bf494

    • SHA1

      fbbb9ae4b724634adcfc04cf21f174dae63c21c3

    • SHA256

      63abd06dc74e5c5b8901aad32f9bf4b64b71b381afa49b5eafa147280283e1e4

    • SHA512

      149e3f33efa9ae14e87f16aeb7e7013ca282f9645825a366a21afbf5080aa76572804e72aa7ab028e8d1efd24edae49bbfcd641bd34541c29803aef12ca054e6

    Score
    1/10
    behavioral1

    • Target

      LifeShare Transplant Donor Services of Oklahoma, Inc. CM58575719.pdf

    • Size

      71KB

    • MD5

      e747f346756c4bec0b2ee92b4c3d099a

    • SHA1

      8ebf4f7b38084f8f287676a12a487b46eecfa2e8

    • SHA256

      117d2913e9435d6dd6f94ff391e741aed9ae716b66950c41ebd292c2f61a6ea7

    • SHA512

      3362f7cceffbd18cbe9d9cb2e2713aac5ca0b602818f379f6bad17c2a3f61ce41dada37f01f8df0b5475cbd25e3add69b2cb49069063dcb7356b97cb4a7d30c0

    Score
    1/10
    behavioral2

    • Target

      LifeShare Transplant Donor Services of Oklahoma, Inc. INOF.pdf

    • Size

      577KB

    • MD5

      4ab83d225b09c4ba7ed395a9a0333b4c

    • SHA1

      6dad4fbb5de3e54b477bd3f68317977ea7802c66

    • SHA256

      1d7b5b8bfeea1d2e9e97ad5336dc1402b151afcb5d50ce3ca618de7a77d23a16

    • SHA512

      35871af277930921ce76646b3efa72512866ddb31cebf12201229e51d9737921c913d2c9516538de0136bfc9cde4c45fb7eb11c605855078ea880236d8d2b6d5

    Score
    1/10
    behavioral3

    • Target

      LifeShare Transplant Donor Services of Oklahoma, Inc. MSA.pdf

    • Size

      716KB

    • MD5

      27f4c66189678891f158c1e1b0993397

    • SHA1

      d26d719b9c2461814c4faaea4ceaf524003585fe

    • SHA256

      f858db3fac905317308bb2fa24d391d37ce5b2cef5e7eb01fa37b20512d7dae5

    • SHA512

      37764a859575662037b8713500c05eeeea0bdabc5252d0a7675688720004783e44a170b2b90e61c961441223bf51204729d528c7efd4c9efd7c22b30ab03fd75

    Score
    1/10
    behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

4
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks