Overview

overview

7

Static

static

1

factura pdf.exe

windows7-x64

7

factura pdf.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4848DEAB0B243D14D3D51228E4B7B496319586A228A0DFBF8CC60DE8F5010469

  • Size

    226KB

  • Sample

    221123-r2354sdb8x

  • MD5

    374bcc12a59aa2020e4cbf8a0f58595a

  • SHA1

    424b90bc8c7fa0a4021c242a11d8b89984e39422

  • SHA256

    4848deab0b243d14d3d51228e4b7b496319586a228a0dfbf8cc60de8f5010469

  • SHA512

    a7b55765eae912c0506e7582902792482688724c55b874f39aaa830d7976433265e4f59c23e0028b2e30903cee4d315551534f7e64b2ed0aa7f09f15250846d5

  • SSDEEP

    3072:XUuApDYbPMioUjxaoCK6yLh6XYrhX/A6I1g+SN5ND/DUW6Sn+zADpmw29fF/vv4/:6UAOjxaoCKJh6o1Nl57+GED9fNXcyhQ

Score
7/10
discovery

Malware Config

Targets

    • Target

      factura pdf.exe

    • Size

      243KB

    • MD5

      c5f937824579c961a694f78c0f5280bc

    • SHA1

      5fabffd85b27dda194a5266dbe57f0bf44169d67

    • SHA256

      504a1971a4ad0a3006f67df485b92ef5f0bef5510adf777e24de9437c28cab48

    • SHA512

      2434c91fc5ef5ef6b87f7d428cf4cb4a5523e19853c8bd10ce1ada177f81cd95e994fd721e8a9e1ffe88b2d0c3c465e008ef77822f298db9b4c62cd31e3f77b3

    • SSDEEP

      6144:vC2z7pfF4Lzr29ayY3bViuFGyrlrQvqi3w7gB9jZW8MkinjKhy:r7pfF4Lzy0HBiubrlrQSi3Us9jc5jt

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks