Overview

overview

7

Static

static

1

FACTURA pdf.exe

windows7-x64

7

FACTURA pdf.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FA48CF7E1CD029A12ECA0B97F62475AEBE5AD2AC724D3944815061C7476D6D82

  • Size

    167KB

  • Sample

    221123-r12wnada6s

  • MD5

    07c07d9e58690951de059b87445f0c61

  • SHA1

    462c5d440cd419264f32b0af05102041e2519d26

  • SHA256

    fa48cf7e1cd029a12eca0b97f62475aebe5ad2ac724d3944815061c7476d6d82

  • SHA512

    fa8f8e18dba7c2a5a848e0534e770a29f0e688dfdf879bcf97c20b11fc2be1e9cd55c8394e3ab7f97be8ba452eb920d7d99c2dc03ac56148c9657f6543fbb791

  • SSDEEP

    3072:RO9tvn7uxcAiUrERc4llZbpvprWNx3JTgn/pNLzUPJ8GiBpIcrllF0rBFA2hI:R4t+iWERcw1vprsgpmB8GiBacZjABI

Score
7/10
discovery

Malware Config

Targets

    • Target

      FACTURA pdf.exe

    • Size

      185KB

    • MD5

      3cc5bf8f226d21e14e5f36e1f242b416

    • SHA1

      75acf1e4d01fd540a98e0c72c211789a8424b5b6

    • SHA256

      716d96b8ceacc99b43b150079f2174dce724515597f4a9a433cfdd577eb27cc1

    • SHA512

      81a74e98974d0cebbf299ab6024ec50fcebc26ba63780bd008dba464a6c93571df3580fd48a1f78075b17e561d646d85dbdd97b7dac5e7f2e56664c15573792e

    • SSDEEP

      3072:RtSBOyX9F2dcVSbUo/L7mogM09j4LdfauVVHJQW8fYRLtQXxUlRaZtnXVrei6NZQ:RC2zUkLgMZauzJneCeZZXBiNuX

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks