Overview

overview

6

Static

static

3

8472 FACTU...DA.pdf

windows7_x64

1

8472 FACTU...DA.pdf

windows10-2004_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Productora y Distribuidora Venezolana de Alimentos S.A. PDVAL.msg

  • Size

    171KB

  • Sample

    220411-rev6zsage8

  • MD5

    9c66da3864d761a993a1d0a04a308242

  • SHA1

    d004f192b34563e9a8dd61036c99a95e4e1c0123

  • SHA256

    3d406cc2b3b4c891e625be3cebc8f292f326b055b0a91b91eefaa5309d1f22fc

  • SHA512

    a3f11464bbb045ce9026af1e05cc8a98c4f4fa770b4e6794acb8f5d370eda222ded4264109ca8281de3defd4a221b6582ff6c0c315fbb01fa7dfc499a11f8100

Score
6/10
linkpdfpersistence

Malware Config

Targets

    • Target

      8472 FACTURA VENCIDA.pdf

    • Size

      50KB

    • MD5

      0233481f9b41ca24ccd800c8aedb08f6

    • SHA1

      80945e31146553c0bae85cd9e79784d5e714861a

    • SHA256

      249ec1b071699e9d72a4249a3ffa89b8f6591d0f21159a541587c3ceab82b5c5

    • SHA512

      d3abc2a0ba24cbe62300bfa4e5daef6483b2975475a3d08b597b4b242d3169dfa000dc9321c81cc6eb1e6cf687a75efa78788932b6e5fd0ca7edac64ae290d77

    Score
    6/10
    persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks