Overview

overview

7

Static

static

3

proof of p...df.exe

windows7-x64

7

proof of p...df.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    proof of payment.pdf.exe

  • Size

    559KB

  • Sample

    230523-mc3qtsff9x

  • MD5

    12a020044ef1ff75bfd860bcee9a3762

  • SHA1

    77008edc365f7a4ad1b1be97c1ad4fc5e96869a5

  • SHA256

    840c7c4082f868ca58dc61ce2fa6309ffcbc17c81fd82306eb6ea558eeeba7e2

  • SHA512

    d7d32aa05253cf106d9d3e9e73c51f29366d7d66a58e1e7bfcd928e5b8ee0f2515fcbedd0ab867646edc891b5fef1a306bc8b399102cb7df808aaf6b269897b1

  • SSDEEP

    6144:GCL+2ACrZFup6K1nS+mtiQTCXOgoX93+Tm7Tv7vnvnmc1pBWRWDSG:F26lLtiGaOg693+Tmnrvmc1pBWMm

Score
7/10

Malware Config

Targets

    • Target

      proof of payment.pdf.exe

    • Size

      559KB

    • MD5

      12a020044ef1ff75bfd860bcee9a3762

    • SHA1

      77008edc365f7a4ad1b1be97c1ad4fc5e96869a5

    • SHA256

      840c7c4082f868ca58dc61ce2fa6309ffcbc17c81fd82306eb6ea558eeeba7e2

    • SHA512

      d7d32aa05253cf106d9d3e9e73c51f29366d7d66a58e1e7bfcd928e5b8ee0f2515fcbedd0ab867646edc891b5fef1a306bc8b399102cb7df808aaf6b269897b1

    • SSDEEP

      6144:GCL+2ACrZFup6K1nS+mtiQTCXOgoX93+Tm7Tv7vnvnmc1pBWRWDSG:F26lLtiGaOg693+Tmnrvmc1pBWMm

    Score
    7/10

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks