7d49bee6860258ba297bbbb27bdf5cf1f499fb4dd9357e1cbc5ef1035ec53aea | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

Factura El...B).msg

windows10-2004-x64

3

WALM_ODM95...11.pdf

windows10-2004-x64

6

Sharing

General

Target

Factura Electrónica. NWM9709244W4 - IXAJQ7884 (696283) (77.3 KB).msg
Size

119KB
Sample

221019-1vadwsacgl
MD5

955aadac15cce2817ece1821bde136ce
SHA1

75e234a74d0b9474e11ff5b5ac95a2cbdfb37d3d
SHA256

7d49bee6860258ba297bbbb27bdf5cf1f499fb4dd9357e1cbc5ef1035ec53aea
SHA512

18ba94a36df4c079431c89141236fc4627b33479c05f462fff5da2041ea953c65e60c3ad9d94c00d1673737869ffc3138ff6e169718d35f5f733c09e17d2d2ef
SSDEEP

1536:emMN/cpT/q6z4oIdtzpYC59rSqUNWOjK4XLtfSTn8DGfHsf9gf5JpcQg86Ay7Q7B:ekzC59194xkn80Mf9g6NAy79Bi

Score

6^/10

link pdf persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Factura Electrónica. NWM9709244W4 - IXAJQ7884 (696283) (77.3 KB).msg

Resource

win10v2004-20220901-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

WALM_ODM950324V2A_2021070200133021000011.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  Factura Electrónica. NWM9709244W4 - IXAJQ7884 (696283) (77.3 KB).msg
- Size
  
  119KB
- MD5
  
  955aadac15cce2817ece1821bde136ce
- SHA1
  
  75e234a74d0b9474e11ff5b5ac95a2cbdfb37d3d
- SHA256
  
  7d49bee6860258ba297bbbb27bdf5cf1f499fb4dd9357e1cbc5ef1035ec53aea
- SHA512
  
  18ba94a36df4c079431c89141236fc4627b33479c05f462fff5da2041ea953c65e60c3ad9d94c00d1673737869ffc3138ff6e169718d35f5f733c09e17d2d2ef
- SSDEEP
  
  1536:emMN/cpT/q6z4oIdtzpYC59rSqUNWOjK4XLtfSTn8DGfHsf9gf5JpcQg86Ay7Q7B:ekzC59194xkn80Mf9g6NAy79Bi
Score

3^/10
behavioral1
- Target
  
  WALM_ODM950324V2A_2021070200133021000011.pdf
- Size
  
  65KB
- MD5
  
  c335d1615efe3c0d6b2ea9493d69b635
- SHA1
  
  14b11432f4abd6cea9548588b37076efda16e819
- SHA256
  
  7f98d431d04307ffe4e8efecfe8176ab3db3c32fc12c1fafcb8bd5e8a2a344a6
- SHA512
  
  5cd9d3e9fdafcd062d472c1c8ce00466ee7d702a59d32802a4a1e38ab8aa3048d123a7bf46b667fdb592b86b8c96e1795d45db48f8f8a1ec4069f2c47575a4c7
- SSDEEP
  
  1536:mOjK4XLtfSTn8DGfHsf9gf5JpcQg86Ay7Q72TDFr:m94xkn80Mf9g6NAy79B
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy