Overview

overview

7

Static

static

Factura 1-...B).exe

windows7-x64

Factura 1-...B).exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    E166AD5B8A8DF050F669C20A75AB8C43CBC7B055BBB5754F525E481F68FDAA36

  • Size

    271KB

  • Sample

    221123-r17rxaaa94

  • MD5

    4ee3936350ae62d651c4a58794e6a953

  • SHA1

    fee6b4c81e201630bbe78ec00f457a86144706ff

  • SHA256

    e166ad5b8a8df050f669c20a75ab8c43cbc7b055bbb5754f525e481f68fdaa36

  • SHA512

    038e893fd5c3a8fa91980e741769bed997d6b59dffa9d14b2af1911c554ec72d21aa344e80b0790901b465f22bddbef6fbad6d54a742999a53f4de6bc96bde58

  • SSDEEP

    6144:7gilbZ/ZYewi1z5bEJ/9c3lCsnsLrkusluYbM27SBSjN/4Fgse6ZMV6kDeMORn:VlbQni1dEJlc3lLsLwuslvblSBPFg790

Score
7/10
discovery

Malware Config

Targets

    • Target

      Factura 1-000556_pdf(~113 KB).exe

    • Size

      405KB

    • MD5

      385e8679704c4f1ce8df70a716dbec5e

    • SHA1

      fc95453f23b4b66c053d2a8d5a79812a6d6089cd

    • SHA256

      2f0507e702a09dd19ac29e728c752c2c3184693e48225c3ab9742d2cb708d12a

    • SHA512

      8e0eb033134b2bb6a53a4dc781ec9b92fb0ab0eec8a66f0d19e71229a5969e89806b2a6e96c210dca2afd01ad2cf2209a712fd5ac5377e424550768033936bfa

    • SSDEEP

      6144:D4t6Lsjd2M0HmXy94g91YAKw6yYjpznATmK/XHpY4CFaVSjjAQpd0Z:Dkj8M0Wg9vKMC2mAm9wSfg

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks