Overview

overview

4

Static

static

4

TC of Purc...v4.pdf

windows7_x64

1

TC of Purc...v4.pdf

windows10-2004_x64

1

Wabtec Ven...D).doc

windows7_x64

4

Wabtec Ven...D).doc

windows10-2004_x64

1

WabtecPO.pdf

windows7_x64

1

WabtecPO.pdf

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7397d7397b584c12a93078a826191c3f

  • Size

    311KB

  • Sample

    220427-l4anpabbf7

  • MD5

    7397d7397b584c12a93078a826191c3f

  • SHA1

    8859ab521c1f0009595ebe1692696f83fc637bf4

  • SHA256

    0aef645502278865098799d78f40f6277121900cc1cd735739b737645d39a200

  • SHA512

    5599b4eab901b6c6c47da01d14eb5aa22deb60e6eadf247e910608b7c1891f1235add9cecdb79b47fd077a3a26a47344b06d6edda5eba86d545f4dd83c49b844

Score
4/10
linkpdf

Malware Config

Targets

    • Target

      TC of Purchase North America v4.pdf

    • Size

      118KB

    • MD5

      601e9c03f062a7ac779b20926a4f990c

    • SHA1

      8946e5c3daf831ed65f97187287d487fa3203301

    • SHA256

      abbcf80391874c2847157d70e094fb9aad893cb0e9d9d315079e0aa2bc0f5571

    • SHA512

      4acf2eb2f67a68cfec70326fda0ec188b499bbf3c0b5b4ff9bb2a74260d6c287f523ebddfca2916700ef7c827305eeffd1284b7595654bf569bbdee1ee3e05fd

    Score
    1/10
    behavioral1behavioral2

    • Target

      Wabtec Vendor letter instructions for routing (00D).doc

    • Size

      85KB

    • MD5

      1cc953819366162fe16e182bde94b2b8

    • SHA1

      2316fca117bbc2600abcaeabde895f849a728a7b

    • SHA256

      b5890a77a9e7673a20ba2cfe886eb7ce4ff7e232acafc2a271f67fe944470800

    • SHA512

      43e4dffcae4ca976a68a48175c27e43f8d7905aa90d5ed95bad2b27824cd0b104a2e5c01ae7f5de414cbe9ca1c4d8cf7ab6097e57899dbd83461d879b224dbd2

    Score
    4/10
    behavioral3behavioral4

    • Target

      WabtecPO.pdf

    • Size

      11KB

    • MD5

      f217cd7a0a30d3699ddabc6c2c684dfc

    • SHA1

      3b0874033aa0f298b508bd29e08059ee5489065e

    • SHA256

      7ef1d9e45fcd93a6361137aa634acda34f09552313b510e0f922399cdef0c4fd

    • SHA512

      bdea49cd40486500c2dcde869c5adcc6d062a4f63510d2a307f31f52e74cabd77fd64c29be65b4faf8487764d3774ac328ab3fa0ee707f8cbf2aee368ddc1d19

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks