c886caf4fcc4d07389d528bdbe845f59d97d86299ee8b88c1fc6256599811187 | Triage

Sharing

General

Target

INVOICE.213557783.pdf.exe
Size

380KB
Sample

230605-phrlvsge72
MD5

283cca8b87929c51ad0d39efc3ca3498
SHA1

014da20b7ffe1e63191b15654e4740a160835415
SHA256

c886caf4fcc4d07389d528bdbe845f59d97d86299ee8b88c1fc6256599811187
SHA512

5d115cc72ba5e72144aba373f75818f36d240f3864b7c13492fd72c32f6ea3693c19981dd4cff3e6e9b31b3ff8a84ea17f2d60e4d16db571a0cb0cb986013113
SSDEEP

6144:mmOPknppppppppppbpppppppppBz+pRjxpQpKyrFdBJxYfmAheWLA5TVvgGGoDCl:9pppppppppbppppppppponxpQpKyrFzo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  INVOICE.213557783.pdf.exe
- Size
  
  380KB
- MD5
  
  283cca8b87929c51ad0d39efc3ca3498
- SHA1
  
  014da20b7ffe1e63191b15654e4740a160835415
- SHA256
  
  c886caf4fcc4d07389d528bdbe845f59d97d86299ee8b88c1fc6256599811187
- SHA512
  
  5d115cc72ba5e72144aba373f75818f36d240f3864b7c13492fd72c32f6ea3693c19981dd4cff3e6e9b31b3ff8a84ea17f2d60e4d16db571a0cb0cb986013113
- SSDEEP
  
  6144:mmOPknppppppppppbpppppppppBz+pRjxpQpKyrFdBJxYfmAheWLA5TVvgGGoDCl:9pppppppppbppppppppponxpQpKyrFzo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2