General
-
Target
d7dbf2f59cdd0890b1de44be3a1dc59aa1ba997c43859a0cfa9d19809c0cc896
-
Size
234KB
-
Sample
221128-cntxyscc21
-
MD5
e672b7c3bc393313b0c8ba496711e50d
-
SHA1
e487ba45ea7b8732488fb6b7339025fe12735b68
-
SHA256
d7dbf2f59cdd0890b1de44be3a1dc59aa1ba997c43859a0cfa9d19809c0cc896
-
SHA512
20997473a3989c17576d25d61f6d4ad59ae9111b241ddb04f9bacaffa76ee0f1cd067b2f329892731e0b31d9636309034d2588121bd08904fe30885edcb477e4
-
SSDEEP
6144:J01T7HfzhdMX0KrnBUMFmQXTLpnJ6LCoEh5U3fX9:J0Xft+XtrnGQfKCZW
Static task
static1
Behavioral task
behavioral1
Sample
Mensaje.Pdf _____________________________________________________________.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Mensaje.Pdf _____________________________________________________________.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
Mensaje.Pdf _____________________________________________________________.exe
-
Size
296KB
-
MD5
931a3a162c8a16c141d12fa0b1c36509
-
SHA1
11b55d6a5a40dcee509da0e4c8cc96a353e6e35f
-
SHA256
a033bc4bd6ef532bf15c06c0be8a5d0632cae01002abc5822659170285660499
-
SHA512
72223e21d8d8aa128c17403d23822d9d5dea1e581d79e6929110fa4103453960c721990c6ce1f05cc6fe5e90ccbbc967cc1a4a890b6d1f94ec77ebcffac3e5a0
-
SSDEEP
6144:cfSb2QKX6KRvqDsQBYVndvPabiSHaUPpavnElI:cfw7KZgKndvYPpav3
Score9/10-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-