Overview

overview

10

Static

static

5

2ªVia_Bol...DF.exe

windows7-x64

10

2ªVia_Bol...DF.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68f840718b1f16efb1bde5d7a75b0f45da5f6a7e7cb56578090c4c2347e2f1e2

  • Size

    502KB

  • Sample

    221128-dq6vzaeh41

  • MD5

    abbf775d284d36468a6feb462eb6dea4

  • SHA1

    e7dbb0b8f32be34249da28769e465a1491a0591a

  • SHA256

    68f840718b1f16efb1bde5d7a75b0f45da5f6a7e7cb56578090c4c2347e2f1e2

  • SHA512

    536a59a89e2c1ac481e895622e7281fc395b357bacc50688d61e99228a0c2aa209b921ad805bc600cf7e1b24a76dbfb271d7a4a97af0750a2295922aa9e02adf

  • SSDEEP

    6144:wgSP7nYY7DAupmefclDxQeqkQKCqtnVMzgZPecVgxuQIyULmtvNdKIHGUpfvtPtc:wgSp7DDuXnuzOPe4gxPIXmbd3mSn5y4C

Score
10/10
evasiontrojan

Malware Config

Targets

    • Target

      2ªVia_Boleto_pendente fatura.pagamento.PDF.exe

    • Size

      929KB

    • MD5

      a4755eadd56d1130931f6c7db3ec6e28

    • SHA1

      21aac5710e38f2b693f4343524cd5c4789500304

    • SHA256

      aa9cf159f8ef806b37fd9ab7ff627c697f0c5daa9ded02379a7ccf97bc3931f3

    • SHA512

      fe3ef3192a888d4d7c64ffe55654c211f79e4ca86c16f73c4484eb0e28f812dddf042ce0f214494d85b2c3f53a0fc8e809a368953c821630cac1246e6c981e29

    • SSDEEP

      12288:Htb20Qc3lT7af41ePBRYuQLKpqeUhbTv5OFgNuPPpHSgazFSnRPpu6A:Htb20pkaCqT5TBWgNQ7az8nJpu6A

    Score
    10/10
    evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

1
T1088

Defense Evasion

Bypass User Account Control

1
T1088

Disabling Security Tools

1
T1089

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks