e166ad5b8a8df050f669c20a75ab8c43cbc7b055bbb5754f525e481f68fdaa36 | Triage

Sharing

General

Target

E166AD5B8A8DF050F669C20A75AB8C43CBC7B055BBB5754F525E481F68FDAA36
Size

271KB
Sample

221123-r17rxaaa94
MD5

4ee3936350ae62d651c4a58794e6a953
SHA1

fee6b4c81e201630bbe78ec00f457a86144706ff
SHA256

e166ad5b8a8df050f669c20a75ab8c43cbc7b055bbb5754f525e481f68fdaa36
SHA512

038e893fd5c3a8fa91980e741769bed997d6b59dffa9d14b2af1911c554ec72d21aa344e80b0790901b465f22bddbef6fbad6d54a742999a53f4de6bc96bde58
SSDEEP

6144:7gilbZ/ZYewi1z5bEJ/9c3lCsnsLrkusluYbM27SBSjN/4Fgse6ZMV6kDeMORn:VlbQni1dEJlc3lLsLwuslvblSBPFg790

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Factura 1-000556_pdf(~113 KB).exe
- Size
  
  405KB
- MD5
  
  385e8679704c4f1ce8df70a716dbec5e
- SHA1
  
  fc95453f23b4b66c053d2a8d5a79812a6d6089cd
- SHA256
  
  2f0507e702a09dd19ac29e728c752c2c3184693e48225c3ab9742d2cb708d12a
- SHA512
  
  8e0eb033134b2bb6a53a4dc781ec9b92fb0ab0eec8a66f0d19e71229a5969e89806b2a6e96c210dca2afd01ad2cf2209a712fd5ac5377e424550768033936bfa
- SSDEEP
  
  6144:D4t6Lsjd2M0HmXy94g91YAKw6yYjpznATmK/XHpY4CFaVSjjAQpd0Z:Dkj8M0Wg9vKMC2mAm9wSfg
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2