General

  • Target

    entregar confirmación de dirección.xlsx

  • Size

    824KB

  • Sample

    230816-qbh7ksba26

  • MD5

    c3b806165bc819983038bbf4a9678195

  • SHA1

    95d8b970434ec336140735a9784742032a4710ec

  • SHA256

    6f0702bd1067a59dc036e671bc71f3ace69ed18c1e765baf515ec71c024fce7f

  • SHA512

    446c89d40f0e9b3bc3952347b2f3ef638e3b5502556178fc9f80be12ee525ad984929e936dd2bb7dc6a239d9f461499e1762fc3e39ed343dcbb866600f48f6fd

  • SSDEEP

    12288:eML7nvXmv0+eT6eqC8v+pdj+5xcSpCb9jR00+3uNy37GIT/6Pp87Zn9yK/D/DMJa:bmv0bWTlWLaxc5tB+7j2P+l9yK/DLZVR

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
ps1.dropper

https://uploaddeimagens.com.br/images/004/559/510/original/rump_private.jpg?1690504129

exe.dropper

https://uploaddeimagens.com.br/images/004/559/510/original/rump_private.jpg?1690504129

Targets

    • Target

      entregar confirmación de dirección.xlsx

    • Size

      824KB

    • MD5

      c3b806165bc819983038bbf4a9678195

    • SHA1

      95d8b970434ec336140735a9784742032a4710ec

    • SHA256

      6f0702bd1067a59dc036e671bc71f3ace69ed18c1e765baf515ec71c024fce7f

    • SHA512

      446c89d40f0e9b3bc3952347b2f3ef638e3b5502556178fc9f80be12ee525ad984929e936dd2bb7dc6a239d9f461499e1762fc3e39ed343dcbb866600f48f6fd

    • SSDEEP

      12288:eML7nvXmv0+eT6eqC8v+pdj+5xcSpCb9jR00+3uNy37GIT/6Pp87Zn9yK/D/DMJa:bmv0bWTlWLaxc5tB+7j2P+l9yK/DLZVR

    Score
    10/10
    • Blocklisted process makes network request

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks