8697c4a24f0eccde21315e2dc00b859d783c86183a330e886f48ed28da05f405 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BZ-Trib DOC LMYLKLAKXEBYMEQXBDND.zip.zip
Size

3.6MB
Sample

240109-1spe2aaacp
MD5

877a22d400d02abb750fad62acdfbdd7
SHA1

2e88086e8020a4a91fb4f638f6031378ecffeafc
SHA256

8697c4a24f0eccde21315e2dc00b859d783c86183a330e886f48ed28da05f405
SHA512

c5f8fc7e99c494a8c9e2f72f858b823c0177db55e43d696912383d63c4360da6c61b89df308c7215feb48e7755306d61d35ba6fc49852ee223980ede2c0cd3f7
SSDEEP

98304:RbEOdO7MOqhfitZxkFxrSKGJth4iem1wzoVZiFATHj8:t7deMOqhf6ZxkFxfGDh4ipKFb

Score

6^/10

Malware Config

Targets

- Target
  
  Recib PDF IGZCOSEFTATT.exe
- Size
  
  124.9MB
- MD5
  
  a9a520c6fa401186dcfb12aff7142c72
- SHA1
  
  5be2ab81e761035c03a433d0c7dab1dc53734b5d
- SHA256
  
  08d63634e0c00db5ccd27e1313fe6fa059c7190ea273f37c55e74ee765b26674
- SHA512
  
  34355f64878fdf8ffe4bb8d86d1f273cdf2f136f5bdfb4501dade8fb5ca0a1a0dcabb643d4d73568340d3393cf744c995fad8411f87a78ce1811b1d4b09ed1a8
- SSDEEP
  
  98304:3JPv3GsOXnoX51xw0x9eqxOCyaPf6d3VCRXHIglFpFxA0ROkYQfynjAK:3ROXopROCyaPU+XoglV7ROkYQf
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2