Overview

overview

6

Static

static

3

Payment Re...LC.eml

windows7-x64

6

Payment Re...LC.eml

windows10-2004-x64

3

Receipt_33...LC.pdf

windows7-x64

1

Receipt_33...LC.pdf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Payment Receipt from ENK General Trading LLC.eml

  • Size

    76KB

  • Sample

    221013-n54n9schbp

  • MD5

    55fe0926c8a542e68466dae4082e27fa

  • SHA1

    e17d842a7ef9126936279002f0316a3982aa7754

  • SHA256

    593e29f008abba930b284b916c7a424e045868f8a7f7a7037082253cf0b24248

  • SHA512

    11aaf029f6493f9a7296dcb9410c0c19ad29ceb53bd6faa94b8caf95254086b29fd7a4d510c8b1ba3a85b0fadc99dfbc8d8b3abd2a27b5fa44258a1d54333d1a

  • SSDEEP

    1536:bV3YQmr7ELOwn+dE48M191eZ13CQbfS9WEkTAWUfavwuLw:bgr7UnsD8M1rgImSsAw8

Score
6/10
collectionlinkpdf

Malware Config

Targets

    • Target

      Payment Receipt from ENK General Trading LLC.eml

    • Size

      76KB

    • MD5

      55fe0926c8a542e68466dae4082e27fa

    • SHA1

      e17d842a7ef9126936279002f0316a3982aa7754

    • SHA256

      593e29f008abba930b284b916c7a424e045868f8a7f7a7037082253cf0b24248

    • SHA512

      11aaf029f6493f9a7296dcb9410c0c19ad29ceb53bd6faa94b8caf95254086b29fd7a4d510c8b1ba3a85b0fadc99dfbc8d8b3abd2a27b5fa44258a1d54333d1a

    • SSDEEP

      1536:bV3YQmr7ELOwn+dE48M191eZ13CQbfS9WEkTAWUfavwuLw:bgr7UnsD8M1rgImSsAw8

    Score
    6/10
    collection

    • Accesses Microsoft Outlook profiles

      collection

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      Receipt_33523367_from_ENK_General_Trading_LLC.pdf

    • Size

      46KB

    • MD5

      c3dc6d7d15ec7dbaf77183a29f9fc61f

    • SHA1

      316a91c16d27bd7b9129174178c86b3e89aae453

    • SHA256

      8e037b2f9860904fdc0b8ffcdcc1cb1ec234b6f572a588f09823084b2886b0b9

    • SHA512

      4972eda68205ba939ed0e3042e0f88ec9490530ca805a5b473a4a83d2654d19dc36b0afeb5c42df95b9a04e143b5acf3356ac96b36e503743b9ca24904031383

    • SSDEEP

      768:hBNXgNhP89pV0mRl57Q/YDpMAW1LGUt/tv0tAPEG1HA03bZfwGZW+X2arJzqQVSH:FlxQCpMAWFGUtFv0tA8uBbZfmxarwQfY

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks