2658485e218c176ba75e2ab0df841c70c8528bad5622c2f5630fd81a8214212f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

trabajos.rar
Size

9.8MB
Sample

230112-dzhjqsah71
MD5

51d3e35d16ed19aaf44f5822859fa038
SHA1

93c8a11b586e1429bc983d127ee2b6ee8199c80b
SHA256

2658485e218c176ba75e2ab0df841c70c8528bad5622c2f5630fd81a8214212f
SHA512

18085f4edfcc94ed6d512806a3f7f8cc28136a54ed2c348d4845728a5bfbb2299728878a2008334249a3b81b2b924ceff80f6a2422725ae635a45518f101dc9f
SSDEEP

196608:z34ixyoKk8oL4MppgtmZfbh1h4Czrv5gY6twXsqmJ9VPJDOi+Gx4XBophXaC6jPn:zFxyod8oL4MpmK1hfHvOY6tI8tJNP4Xh

Score

8^/10

upx

Malware Config

Targets

- Target
  
  Microsoft Office 2019 + Licencia/Descarga Más Programas Gratis!.url
- Size
  
  133B
- MD5
  
  0301fa144d765a8a1be2304be6ea3f6a
- SHA1
  
  f4528959e08a2d0148087b96ffdd7f99c413f770
- SHA256
  
  8508014c7cdd0716b2d899c4f3bcc461b80ec325a6c02211c522ccfe80417d1d
- SHA512
  
  c265ec7e1cebaa847514f20db915b28b6ebf64db733a0fcdb9724b13d0ccc2ccdce97bccc4bebedaeb933ea73c458e6e5da2b7f62b23e2b2a9ff99714683796c
Score

1^/10
behavioral1 behavioral2
- Target
  
  Microsoft Office 2019 + Licencia/Office/OInstall.exe
- Size
  
  9.5MB
- MD5
  
  f71556138c9eb716330063156db4a6bc
- SHA1
  
  bd91945d407cbeee830c15280c8324459f0ff61a
- SHA256
  
  41ff83c380b958e918c4061c02a6077590d7630a01d7f2f0f448dc1a6fbf284a
- SHA512
  
  259642e8b2398122f00b031f6af4e79a2cea0831b4ef00c0f118f1fd28d32c92122a118921ce2af915f141273a2774ccf9abdfdc596175ac3c190e8f891c139e
- SSDEEP
  
  196608:vp1crEM65aqMLvUcm+oz3BkeBTAUW24t13Dr7m0mitn2xe7gXQZ+3jeRBTfYNCH1:hurEzabjm+4keB0vt1Dr7m0mc2xe7gAN
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4
- Target
  
  Microsoft Office 2019 + Licencia/Office/files/x64/cleanospp.exe
- Size
  
  19KB
- MD5
  
  162ab955cb2f002a73c1530aa796477f
- SHA1
  
  d30a0e4e5911d3ca705617d17225372731c770e2
- SHA256
  
  5ce462e5f34065fc878362ba58617fab28c22d631b9d836dddcf43fb1ad4de6e
- SHA512
  
  e0288dcf78092449d9cbaef4488041131925387c1aedc9e9512da0f66efe2fb68350ca3937f6715834e62e7c931c5dad0fc8bc3c6c0c3daedeff356d6feaac2e
- SSDEEP
  
  384:gQAInWKpEFFzpjq37oIOU6GHq33QPiu431VP:gxWTpOFagUb2qiu43P
Score

1^/10
behavioral5 behavioral6
- Target
  
  Microsoft Office 2019 + Licencia/Office/files/x64/msvcr100.dll
- Size
  
  809KB
- MD5
  
  df3ca8d16bded6a54977b30e66864d33
- SHA1
  
  b7b9349b33230c5b80886f5c1f0a42848661c883
- SHA256
  
  1d1a1ae540ba132f998d60d3622f0297b6e86ae399332c3b47462d7c0f560a36
- SHA512
  
  951b2f67c2f2ef1cfcd4b43bd3ee0e486cdba7d04b4ea7259df0e4b3112e360aefb8dcd058becccacd99aca7f56d4f9bd211075bd16b28c2661d562e50b423f0
- SSDEEP
  
  12288:3gzGPEett9Mw9HfBCddjMb2NQVmTW752fmyyKWeHQGokozS:QzJetPMw9HfBCrMb2Kc6ymyyKWewGzUS
Score

3^/10
behavioral7 behavioral8
- Target
  
  Microsoft Office 2019 + Licencia/Office/files/x86/cleanospp.exe
- Size
  
  17KB
- MD5
  
  5fd363d52d04ac200cd24f3bcc903200
- SHA1
  
  39ed8659e7ca16aaccb86def94ce6cec4c847dd6
- SHA256
  
  3fdefe2ad092a9a7fe0edf0ac4dc2de7e5b9ce6a0804f6511c06564194966cf9
- SHA512
  
  f8ea73b0cb0a90fac6032a54028c60119022173334e68db3fbd63fe173032dd3fc3b438678064edb8c63d4eceaa72990ce039819df3d547d7d7627ad2eee36b3
- SSDEEP
  
  192:Xdaz2FKIaphXuVX3uKny+gASTGWyQG0eJIL+uVl9tUDY5Kajjtl9w++zOzrPwaur:NbFuUOvAiG0gIVDKDYgmh02HPwzi3An
Score

1^/10
behavioral10 behavioral9
- Target
  
  Microsoft Office 2019 + Licencia/Office/files/x86/msvcr100.dll
- Size
  
  755KB
- MD5
  
  bf38660a9125935658cfa3e53fdc7d65
- SHA1
  
  0b51fb415ec89848f339f8989d323bea722bfd70
- SHA256
  
  60c06e0fa4449314da3a0a87c1a9d9577df99226f943637e06f61188e5862efa
- SHA512
  
  25f521ffe25a950d0f1a4de63b04cb62e2a3b0e72e7405799586913208bf8f8fa52aa34e96a9cc6ee47afcd41870f3aa0cd8289c53461d1b6e792d19b750c9a1
- SSDEEP
  
  12288:yMmCy3nAgPAxN9ueqix/HEmxsvGrif8ZSy+rdQw2QRAtd74/vmYK6H3BV0eAI:dmCy3KxW3ixPEmxsvGrm8Z6r+JQPzV4I
Score

3^/10
behavioral11 behavioral12
- Target
  
  Microsoft Office 2019 + Licencia/Suscribete a Mi Canal de YouTube.url
- Size
  
  161B
- MD5
  
  c5516092689cefbeb8d7eda9db0686b8
- SHA1
  
  c6a589a4558238199d9577cadcddf811675ffde6
- SHA256
  
  24453f347aa27d692e6fa1cf4fcc0e6de333e5b3758d96b6505aaa637fb46b9a
- SHA512
  
  d1cff9c8fa8b97edd6128dbdf647d2ab981a40ed6937efac0f6ff273bb5a7f6cb2605c7136180d1dc127ab05e8b3562e0699ec357534fd478bc121b76ae3bda4
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14