2f1cc1e2eb21c5a241a75f5781280a6c33234c5b0e41318ad37b4ea80324d270 | Triage

Submit
Reports

Overview

overview

7

Static

static

4

Payment Co...01.pdf

windows7-x64

1

Payment Co...01.pdf

windows10-2004-x64

7

Sharing

General

Target

344034d1c644fbbaf510106b98f01f7f55fdc20bfa8a93b66535eb9a55c8bc74.zip
Size

255KB
Sample

220920-rvnrvaddf2
MD5

717876a0eba54d162d65429f528251f7
SHA1

7939dcd450e0b3c379e73ce449b10432d47e05a8
SHA256

2f1cc1e2eb21c5a241a75f5781280a6c33234c5b0e41318ad37b4ea80324d270
SHA512

0eb2bda4738d7afd945d48c598d6478ffe50fd291e4ddae51fbb8a920318286b81b6998ae1fbbbd9c2951e52118ea8c8bb07a6a9fe7d75a5e350e54574f4618e
SSDEEP

6144:nrcVWzOssyqTn2C5iINrQjKIE0sPrvrbtvgQCJY8u9t778Xnfq:4UzLin2C5iFZ+PrtvZYarmC

Score

7^/10

link pdf persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Payment Copy#190922-001.pdf

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Payment Copy#190922-001.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  Payment Copy#190922-001.pdf
- Size
  
  246KB
- MD5
  
  db926b78737d7f4789f160b57f7659ee
- SHA1
  
  69f78005e84a86e9ae4698a7063b7cf7f357700f
- SHA256
  
  3171911f4527c4e22b1d2bddf421936d9b63d702b742eba54eb55771844b9f69
- SHA512
  
  1f0bc7543fb62e9e391a36576ac2d05f6886a16fb2987ad1464404c3d52b45e3fb0e0d9db61c9c73c558df37cea52c97cd138df81ae62bb0fac402b4f1907487
- SSDEEP
  
  6144:pUUtLpXNzMo8Auk55Q/zlk654ARhT7mnBE+Dfq5ql:pUgLpXNzMoQkjQy65/Rx7EC5ql
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy