4636432c6a2621b6ce17bcf265fb30b1baacdc35fc78eb0ef99e7e25c3ca5eae | Triage

Sharing

General

Target

proforma pdf.exe
Size

604KB
Sample

221123-hw3sqaee66
MD5

ecfd7ad2e19504072cc71b021309b405
SHA1

5a14414ca8f3ce7b9a3a8e6f090cdf72800fc6c6
SHA256

4636432c6a2621b6ce17bcf265fb30b1baacdc35fc78eb0ef99e7e25c3ca5eae
SHA512

5fd019d5d951d8be252b81d1a8a1236f7addc6c5358241976d1023d91bd0bcf7f36bf4d728217ebe9d8b1270635de11ba3ae32e66dfba04eec36b7fa5c890741
SSDEEP

6144:mp+ggf0T+/tfHeE1Ue3Tfl1NgUYBv9gxdJHyYqktxpmrNxDu:S60T+JHeRAT9XgUYBmxZxmnq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  proforma pdf.exe
- Size
  
  604KB
- MD5
  
  ecfd7ad2e19504072cc71b021309b405
- SHA1
  
  5a14414ca8f3ce7b9a3a8e6f090cdf72800fc6c6
- SHA256
  
  4636432c6a2621b6ce17bcf265fb30b1baacdc35fc78eb0ef99e7e25c3ca5eae
- SHA512
  
  5fd019d5d951d8be252b81d1a8a1236f7addc6c5358241976d1023d91bd0bcf7f36bf4d728217ebe9d8b1270635de11ba3ae32e66dfba04eec36b7fa5c890741
- SSDEEP
  
  6144:mp+ggf0T+/tfHeE1Ue3Tfl1NgUYBv9gxdJHyYqktxpmrNxDu:S60T+JHeRAT9XgUYBmxZxmnq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2