91eb973a8bafa8cb19d6adc7dae4e547314472bfb48869cceccb2fb926280d94

General

Target

infected.zip
Size

3.1MB
Sample

230629-pdj18ach84
MD5

ed173034fcbfce973004a5df16cc23b8
SHA1

d3466332928236fd7e40f830f67f9c09a283eb33
SHA256

91eb973a8bafa8cb19d6adc7dae4e547314472bfb48869cceccb2fb926280d94
SHA512

5882a5b36bbb59d69bc7d3ffca22c383ef4394b282cdb444fdeed3c6692d712f8d5fc03f6ffd66a1e6bc951082b6a16321414e7f11e0e746823a2c19b5658203
SSDEEP

98304:TQDT4oks464/7yLyxMk1OM32nN2Bs6PMVWCXFIjLYv:TQDT4uwymxPanj6PMVHh

Score

7^/10

Malware Config

Targets

- Target
  
  infected.zip
- Size
  
  3.1MB
- MD5
  
  ed173034fcbfce973004a5df16cc23b8
- SHA1
  
  d3466332928236fd7e40f830f67f9c09a283eb33
- SHA256
  
  91eb973a8bafa8cb19d6adc7dae4e547314472bfb48869cceccb2fb926280d94
- SHA512
  
  5882a5b36bbb59d69bc7d3ffca22c383ef4394b282cdb444fdeed3c6692d712f8d5fc03f6ffd66a1e6bc951082b6a16321414e7f11e0e746823a2c19b5658203
- SSDEEP
  
  98304:TQDT4oks464/7yLyxMk1OM32nN2Bs6PMVWCXFIjLYv:TQDT4uwymxPanj6PMVHh
Score

1^/10
behavioral1
- Target
  
  Incidencia-Declaracion_6sgtf.zip
- Size
  
  3.1MB
- MD5
  
  1c0cc69d34459f10754e02cffd6b16be
- SHA1
  
  135d6189458232d920887092d2bf42cdb0ea5b85
- SHA256
  
  638a40597808cfa2cc5574be060469785924d11cb14ceebf921967dd6817931e
- SHA512
  
  9ca5a8930ede70b0d3573819cab85a01e933f55fa216f95c7f3b56d1e19930860589d8ef20ae2da20fc37e863eaa35b4af416af7c63d0a75ae6844fa31eb7541
- SSDEEP
  
  98304:VUgnaIZX8wdtdEM8C8KtlYfssLzPoY3han:DRREWlYfFnPVxS
Score

5^/10
- Drops file in System32 directory
behavioral2
- Target
  
  Documento-@_Incidencia-Declaracion.msi
- Size
  
  9.4MB
- MD5
  
  769cf5c13907bdf8d8d0fefd5bf3fa3e
- SHA1
  
  6c70363ac061729605367296207b11f4be50ed82
- SHA256
  
  c095f9a7c38fe589cace06c6544c4c102ffdd6457cf5d404d1ac64722d44c9aa
- SHA512
  
  ba66d88647b313f0ba5b1b7c83b5f0609a1c274cb7cc3d855d7dab3f4717e346f659c71784602c2503a4c0c3efb9fe3fcf5efcd3fdd0df9d19462decbb59b348
- SSDEEP
  
  49152:d+fLE73I5WQNDf/9vBfl8Q+w3HjSMAO26DrWaEy3VwyPsm8IqTCVk6UfzwdMaofJ:D3I9zbCmPO+2I+2sic0
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral3
- Target
  
  RE 01850669.msg
- Size
  
  118KB
- MD5
  
  68cba0bc36b8dcf836cb94d6665958c0
- SHA1
  
  aefa511c29b7ff0c661cf65df50f6a60cc7a8a79
- SHA256
  
  14ec3b19d87609b4944e3cdf6bfb242a411923460efa3b1b8b7f8f1777854852
- SHA512
  
  835cb90000446c63f437af1c125d8ae79d973a7675af81cc77cdec742c488b4df3a4350760ecdc4f48dc64b004c428b342ec8335ac60169e4ea5d4287a6a3af8
- SSDEEP
  
  3072:xiCSulSmRP3qsybVB5yn//Bn/YyZPNW0gQtLHuy:d23bD5yhn/bZPg03ZHu
Score

3^/10
behavioral4
- Target
  
  image001.jpg
- Size
  
  2KB
- MD5
  
  2e77639faca1fc7bbf9b4b88d2c4319f
- SHA1
  
  7f0c025c0d077d38ee64af133da0d708dcf1a413
- SHA256
  
  249ac1761021be184f4b1000d60fa7a842b56162325fcfe2c674aec6bfb8c27b
- SHA512
  
  eaaad10ec8ccb35049ebcf564c72718ca868a2708ec26067772c3d2347b1b67197e0f544858e1010b9fd42f785a5c55ebb43724253f2f7812c0169d92d97f1dc
Score

3^/10
behavioral5
- Target
  
  image002.png
- Size
  
  3KB
- MD5
  
  ab3256d2d764cbd1b49031792ae4815d
- SHA1
  
  a9d7e9e25161f071fe9600f0a4fb56a38ece3f25
- SHA256
  
  0066db7ba06f8cac0bf187063b2db2d22b8a2ec4a3cf8cdfeefe21af1ab0d870
- SHA512
  
  7425d7987e35e10cdf4d851b6d81643ff9d96663e3b9034cbbc812c22d534ba3c0b796e5c53cc817c73ad92e7d626578c5fc2f96635de19ebeeb2aeec3188665
Score

5^/10
- Drops file in System32 directory
behavioral6

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

2

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Drops file in System32 directory

Loads dropped DLL

Enumerates connected drives

Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6