05781583e80208267be31f913d547d6c7f635073cd7437ba12b5c7a25e906c30 | Triage

Sharing

General

Target

RV Proveedor En Aire Comprimido y Servicio de Mantenimiento.msg
Size

1.2MB
Sample

230103-w1b3fscc78
MD5

cddd3048c6275232c86db4c0054b6e75
SHA1

f6e45b8afd8e2d76df1148f92111f9dd32d56cc1
SHA256

05781583e80208267be31f913d547d6c7f635073cd7437ba12b5c7a25e906c30
SHA512

9749930f4105e8a6c0576fac9a21e86799a87015d14c51bde635605f1ebf0955f6bfddabe94c125fa62d4549f33b87c492c4256e541bc54acfa16deaedee6025
SSDEEP

24576:E3beQWpgSzTrcfmtpH4oKHW8ogSGAKSOU6m:E3beQQLDcfmtpH4oKHW8ogSGAKSOU6m

Score

6^/10

collection

Malware Config

Targets

- Target
  
  RV Proveedor En Aire Comprimido y Servicio de Mantenimiento.msg
- Size
  
  1.2MB
- MD5
  
  cddd3048c6275232c86db4c0054b6e75
- SHA1
  
  f6e45b8afd8e2d76df1148f92111f9dd32d56cc1
- SHA256
  
  05781583e80208267be31f913d547d6c7f635073cd7437ba12b5c7a25e906c30
- SHA512
  
  9749930f4105e8a6c0576fac9a21e86799a87015d14c51bde635605f1ebf0955f6bfddabe94c125fa62d4549f33b87c492c4256e541bc54acfa16deaedee6025
- SSDEEP
  
  24576:E3beQWpgSzTrcfmtpH4oKHW8ogSGAKSOU6m:E3beQQLDcfmtpH4oKHW8ogSGAKSOU6m
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1
- Target
  
  WhatsApp Image 2022-12-17 at 11.23.46 AM.jpeg
- Size
  
  100KB
- MD5
  
  0a1b07b8b905c1ed652f41b38ced06a8
- SHA1
  
  2245c6536bbe7aa9c8ee134476be55dc3e183496
- SHA256
  
  e87cf0c0ca30c19517e9fd36bb2c07d911e09bd2540acb465bfc8e245f675a39
- SHA512
  
  5f8fc6968829c7ce3df8151e62e2620fd3f1427a85d36429b3487014f8e613e945323f1db198ebfe19a59462fd3103841dcdbe4bd8481a5751df75447ec46e99
- SSDEEP
  
  1536:/86u99JAe9qXTXeeeeeee/B7iIxsWBhCHj/FkcwzdJ3CrKRe5aKRvd3QCzNMJJW:5i9h92AlKHj/o/3aKd2VtNl
Score

1^/10
behavioral2
- Target
  
  WhatsApp Image 2022-12-17 at 11.23.47 AM.jpeg
- Size
  
  107KB
- MD5
  
  48a298ac324344b7feaee14e5e67aa57
- SHA1
  
  c1d2bddde7a94ebc754bc181fd59eaa00724619e
- SHA256
  
  3136748a3b3938d80534176e127e091df2eb5883f033bb583f2edda08f67975b
- SHA512
  
  28e009562cc0e60c69afba67d17d562cdf0a2ad9bc2295e0c957377e513798106a2fb14d354b3e0f65353310c3ba7f4dc9a2f14682e5ebf411e1f8fcd6ea2bd8
- SSDEEP
  
  1536:/8XiwIMNk2TcUG8Jr7mbtbuOnvlAXm4SuHSoFFFFFFFFaFFFFFUFJq6z+rxkIaxA:giwLkiU8JGHnSXguyHyk+gcG
Score

1^/10
behavioral3
- Target
  
  image003.png
- Size
  
  28KB
- MD5
  
  e1ede6717df4b1c377725280f7c14f7c
- SHA1
  
  f39e21e10a499b296b9c4864f2b8c1e91609a65d
- SHA256
  
  9ad58b20feb4074746aec764d3ee422ba03250f12e11cc579a648ad9028545f5
- SHA512
  
  63c99badfb5dbd9ca88d7dd1dc8768068db05efaf473821eea6af808bcc07dbdce185b89b97c57d034e480806392b15e03689935ada1f99961924cdb40d13a1e
- SSDEEP
  
  768:JI/6WvXbkDXmGhXruUoPUproJpAoAgs6QF087:JIoaGhXrzoIoJpAej87
Score

3^/10
behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4