4df973acc021693096a58db45236ff78617905f38fdbb0eaecfa39acc0eaecea | Triage

Sharing

General

Target

OneLegalOrder_17895443
Size

3.9MB
Sample

220505-zqmyrabdhk
MD5

044c1c5a37ed98b0b725e382392757fe
SHA1

897678c7da1715ae84a1ba0dc131608353e60807
SHA256

4df973acc021693096a58db45236ff78617905f38fdbb0eaecfa39acc0eaecea
SHA512

434b297df653c087c08dcdc1abab4327c31c533c01b29f67c66a98d2be0299827c87c0495246bb41d0082c1467d973ee63435aca83b4be3a3d2956b0e9aae5e3

Score

5^/10

link pdf

Malware Config

Targets

- Target
  
  OneLegalOrder_17895443
- Size
  
  3.9MB
- MD5
  
  044c1c5a37ed98b0b725e382392757fe
- SHA1
  
  897678c7da1715ae84a1ba0dc131608353e60807
- SHA256
  
  4df973acc021693096a58db45236ff78617905f38fdbb0eaecfa39acc0eaecea
- SHA512
  
  434b297df653c087c08dcdc1abab4327c31c533c01b29f67c66a98d2be0299827c87c0495246bb41d0082c1467d973ee63435aca83b4be3a3d2956b0e9aae5e3
Score

1^/10
behavioral1 behavioral2
- Target
  
  OneLegalOrder_17895443/Decl [redacted].PDF
- Size
  
  267KB
- MD5
  
  752524932eaee5883b5854843484f11b
- SHA1
  
  e58cbcdf3d855852413fd111b9f587be9fff54de
- SHA256
  
  cf5632e076beb1546ae3e3764a7823a00c1d0d6882ff1e631447741e5bc5db8d
- SHA512
  
  f17bf0fe684bfd51d3a31654cd621ff53a6c338bb7ae49f8740fc893161ae3797ce2abbef561f69fa171f649f1eca82eaabf2341edf4d2b68db728647f6b3151
Score

1^/10
behavioral3 behavioral4
- Target
  
  OneLegalOrder_17895443/Decl [under seal].PDF
- Size
  
  3.2MB
- MD5
  
  badde7944033cc63984e902d513d41bd
- SHA1
  
  8656a1a1d28716a19208ab4229cf18c70303a89c
- SHA256
  
  e34bdab9e960f7af9e1840350a19ea65d45f00b9fc753008c4eb84a7ad321e7d
- SHA512
  
  5c5cf0903fa89228436aa9eed76632c25fcba4ea5e1ae51b035053ce4609be23d2227a67b1b0434acfe59936bae43af2a6bb521cdbcee866df5b377b252950d6
Score

1^/10
behavioral5 behavioral6
- Target
  
  OneLegalOrder_17895443/MPA.PDF
- Size
  
  170KB
- MD5
  
  576222ae105a3ca13246415b441fa715
- SHA1
  
  803284516ab80a3c7a4339359281ea113c92c2d8
- SHA256
  
  9658b5fda794f38b043268f127ffc8d48ccf7d85cc3c0cf869173b01533a30b3
- SHA512
  
  f52556edff06bcd97a5405d833c67b8a1f77acad4fb934c1d08003cc2dc287ac8c05bf3ef0b1a38ba6690bf8167f287e3815da2b56b67ad081909309ddccf9da
Score

5^/10
- Drops file in System32 directory
behavioral7 behavioral8
- Target
  
  OneLegalOrder_17895443/Mtn.PDF
- Size
  
  79KB
- MD5
  
  d1e2d6a2bbb5fd625e42a54eebb2d84a
- SHA1
  
  da935960bc7d11096ed480305fe3e8255886b22f
- SHA256
  
  e1497fdcbbf02deba9304129f41098905d7899e99f3d48c4901a0d16a243d0d6
- SHA512
  
  c2cef30a40cc7f3b05eedf81d51f0c56b1e255c4c4bd3e448764372913f8fde440584289cb5006e1086ff373b32b571084f8493251e6236993f0478d28eb366a
Score

1^/10
behavioral9 behavioral10
- Target
  
  OneLegalOrder_17895443/POS.PDF
- Size
  
  110KB
- MD5
  
  edaf80405ac230757bb6f397ebd9ab67
- SHA1
  
  5ccb362d286768c747c950a9f35eae300b31b3b5
- SHA256
  
  f9614ff64630c39bef920f10be814086f434fb0f90e814088c37b1f32bbb8515
- SHA512
  
  3844b2e5c29cfb16038c7fbd68b32237fb45dfedfb9bc76e428a9780c618867d5d7afc7ff193a92fc1f4ce252943c4d6f690c77af3c44289895b38ba5c8adb5b
Score

1^/10
behavioral11 behavioral12
- Target
  
  OneLegalOrder_17895443/Prop.PDF
- Size
  
  134KB
- MD5
  
  aab901484649eba45a65fbb400783970
- SHA1
  
  3edd534c23f724841b09c5f57d10d64651b1730f
- SHA256
  
  6295b3bd89dfeb550f8fead94eee1c88ed3f7a666c12c6d1125d8a74cdb17af0
- SHA512
  
  9c3dd2c07b644166ba4aaf94e49cf330bc738c08553a9719a76eab2cb1d56d5704cba6d830a1d374c407730b0607d8373220230059183c0ec97b197343e59008
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14