182783b6bb9c48f663e7c5feeb471f4bf82d6d5f80a3a00282e76d4affc5ef60 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

Device/Har...df.lnk

windows7-x64

3

Device/Har...df.lnk

windows10-2004-x64

7

Sharing

General

Target

Passport20231023_90223.pdf.lnk
Size

898B
Sample

231208-acn68agc34
MD5

f361791f3d1545ff696416e21b029ab1
SHA1

f6b73173f064f71798e3c27935becbcfb61f2d2a
SHA256

182783b6bb9c48f663e7c5feeb471f4bf82d6d5f80a3a00282e76d4affc5ef60
SHA512

9fd79c26e5141103d32011e745acad90a985fadb72c9b56c23f47d412e0ba833d98f132237d9671b00795819baaac76fc659512f8fb304572732a3a3074397f6

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

Device/HarddiskVolume2/Users/jeanluc/Desktop/Passport20231023_90223.pdf.lnk

Resource

win7-20231129-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

Device/HarddiskVolume2/Users/jeanluc/Desktop/Passport20231023_90223.pdf.lnk

Resource

win10v2004-20231130-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Device/HarddiskVolume2/Users/jeanluc/Desktop/Passport20231023_90223.pdf.lnk
- Size
  
  1KB
- MD5
  
  c97607e6e04da0e5ef7414821afba0f5
- SHA1
  
  2acd031bbb023660c5c214809ef7e32a040ad4dd
- SHA256
  
  9a1d62c7aa156b0920f87b422ab3685e60393fc97a0b742e533e791adcf5a31d
- SHA512
  
  a5a1d693b1da51fbdc46047af26697efd5f51bf1cc0928065a4cc67a19c1a39d58e68e8b7a70666d9d350c337f5bd5fb5c80fa796e35cc8b809c0b90c33b0b61
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy