ac40757d015370b9d0f73c74e989e2d21af96276607b9af9e70915dcc787818a | Triage

Resubmissions

30/08/2023, 22:43

230830-2nbh2sba2s 6

30/08/2023, 22:33

230830-2gw66sah8w 5

Sharing

Copy URL Twitter E-mail

General

Target

02--NOTIFICACION DEMANDA LABORAL ADMINISTRATIVO POR INCUMPLIMIENTO.--.eml
Size

17KB
Sample

230830-2nbh2sba2s
MD5

b4007963aa62e59bcaf589618ea57c80
SHA1

244344295dd222a7558d0e3843e1d6c6b3578b3b
SHA256

ac40757d015370b9d0f73c74e989e2d21af96276607b9af9e70915dcc787818a
SHA512

a8323d51b31cc41e8fb0ce783abb0ec9bcaefea41030259f387893c9ab6ec3d04abaf6a5c0a06e5e519b5de8e036294d93c416e099361777b65f07bb0a68f4b6
SSDEEP

384:oWkcxEsEbK2+1yajEGC/d0K6X4qRSd+uInLfMELDsRQkUH:jEsEbKgS40vyinDMEflk6

Score

6^/10

Malware Config

Targets

- Target
  
  02--NOTIFICACION DEMANDA LABORAL ADMINISTRATIVO POR INCUMPLIMIENTO.--.eml
- Size
  
  17KB
- MD5
  
  b4007963aa62e59bcaf589618ea57c80
- SHA1
  
  244344295dd222a7558d0e3843e1d6c6b3578b3b
- SHA256
  
  ac40757d015370b9d0f73c74e989e2d21af96276607b9af9e70915dcc787818a
- SHA512
  
  a8323d51b31cc41e8fb0ce783abb0ec9bcaefea41030259f387893c9ab6ec3d04abaf6a5c0a06e5e519b5de8e036294d93c416e099361777b65f07bb0a68f4b6
- SSDEEP
  
  384:oWkcxEsEbK2+1yajEGC/d0K6X4qRSd+uInLfMELDsRQkUH:jEsEbKgS40vyinDMEflk6
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2