0f9c0bd42f1df79138cae641d05325caa028b42e58872c5e75af8a0d1d18b045 | Triage

Sharing

General

Target

Mensajes en cuarentena.zip
Size

30KB
Sample

231226-t1p8zachh4
MD5

9545202acf0d35e4de9f455117ea3cfc
SHA1

66c93855f5561adb1ad952d10330785e801a286b
SHA256

0f9c0bd42f1df79138cae641d05325caa028b42e58872c5e75af8a0d1d18b045
SHA512

3a81456f3bb6d844d04d789cefc9ec118e5c77063f5e52c61217be10df7622f4842e710783f9a565a45fda830f26710012bbfb0b2675303753a95ecda66a7927
SSDEEP

768:hci825u8x7SNxnqNd35JYyWZfSf+VyoUZXvIUyD6+ESUco7NDfQQ8b:hH8zHNxoPQ9OkcZXAl/Eqo7NDfT6

Score

5^/10

pdf

Malware Config

Targets

- Target
  
  Mensajes en cuarentena.zip
- Size
  
  30KB
- MD5
  
  9545202acf0d35e4de9f455117ea3cfc
- SHA1
  
  66c93855f5561adb1ad952d10330785e801a286b
- SHA256
  
  0f9c0bd42f1df79138cae641d05325caa028b42e58872c5e75af8a0d1d18b045
- SHA512
  
  3a81456f3bb6d844d04d789cefc9ec118e5c77063f5e52c61217be10df7622f4842e710783f9a565a45fda830f26710012bbfb0b2675303753a95ecda66a7927
- SSDEEP
  
  768:hci825u8x7SNxnqNd35JYyWZfSf+VyoUZXvIUyD6+ESUco7NDfQQ8b:hH8zHNxoPQ9OkcZXAl/Eqo7NDfT6
Score

1^/10
behavioral1 behavioral2
- Target
  
  781fb5de-8012-4db6-3fb2-08dc0320e6f3/73016801-2546-e944-7b2b-0f0bc4155649.eml
- Size
  
  65KB
- MD5
  
  b904e680b80e2ddecc5bf6ff4571ac11
- SHA1
  
  9813f5e9b72f1b1dc1f7eb4856a25faefcfa7d3c
- SHA256
  
  398892ef5e35c74617cfdd47a36e37e2d5f2aa7656288baa0a1fb7af10e1fb92
- SHA512
  
  aac7089c767eb1638abd223a24e4734b9096478a0f2997fcb671f5f334d33cabc79bbd4bb38f95537648ff27c0ba1497f291f6c2141b8ef2fd84b5a676c6d819
- SSDEEP
  
  768:Ei1IoM42vqS+anaiFOxjjaLRNYh8PeIDlLjBZLcJHFhtqB9gx8ib3:lM40BfnZPLsh8PeIDlnYXhtqXges3
Score

5^/10
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  attachment-3
- Size
  
  16KB
- MD5
  
  e58b5be637f98bbdf3fbc4697b1aa9b4
- SHA1
  
  654280f265390a1e05178da7e465295b08ee9ada
- SHA256
  
  dbd4fc9c15f8294a3079e9ba6d3e5d43e272e43ccda9ff78da92fbcbe398b3f5
- SHA512
  
  aa0df404c6a60c76fae7253096c3198aafbdce35c7114412a940b86af028775994aaac1505944ae9c781b60253f8f6998bcf2bb51315351013a6f99a749a3ecf
- SSDEEP
  
  384:O3HVqDpGgL1cVArWRxDcZViWjbk19kxLFfKK/560bOzUy1iy7mdvofmq:jjpcI8ouQC9af3HbOgeiyFT
Score

1^/10
behavioral5 behavioral6
- Target
  
  email-html-2.txt
- Size
  
  24KB
- MD5
  
  501305999ce404bbe19214ebdc14a102
- SHA1
  
  e9a53b5040460cfdd8d15706a1be189707cc33d6
- SHA256
  
  c30ad3e99becfd39e1eb3670b1254d90d77d5840b337861b3110bf6560dc28de
- SHA512
  
  94c3ad6b9696f72ec66b93cf37297ff815043d8846edd180383d7ef08a9fe3b137fa6728a158bc143b727bbe706bd0d311b903f3f3f9bcb179688d1d9cad2aec
- SSDEEP
  
  384:7bzIpu2WM4z4y4wfgAgZgfkd0LoZ4XcVsD+gAgQgWgYgfkd0Lot9fkd0LoZ4XcVO:7bcpurT2nAgT
Score

1^/10
behavioral7 behavioral8
- Target
  
  email-plain-1.txt
- Size
  
  545B
- MD5
  
  29e6ea107989df9d342b1a9e197cebed
- SHA1
  
  cb3b268a54414557d2ca593d484885dadba0f312
- SHA256
  
  2f99ff6e825ad734abfef6b3c10284cb5865d3deb2b8f0ecbbc51d8250031ea7
- SHA512
  
  786f8b45830b3be9fea2c2aef18df0798c9b5324985058b8da27e6479fdef16fcce6e8d67750327056277f5ee5787d192e303db37ef16c229a70343f8e83a10d
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10