Overview

overview

8

Static

static

8

6480000079...LS.pdf

windows7-x64

1

6480000079...LS.pdf

windows10-2004-x64

1

6650000079...IT.pdf

windows7-x64

1

6650000079...IT.pdf

windows10-2004-x64

1

6800000032...AM.pdf

windows7-x64

1

6800000032...AM.pdf

windows10-2004-x64

1

6930000015...ON.doc

windows7-x64

4

6930000015...ON.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    T_AGM__1905.jar

  • Size

    2.3MB

  • Sample

    240424-fdebasfa84

  • MD5

    808e2c07bc6af2eb1c7866bf3b1e12bc

  • SHA1

    3e7685d66322e0ad195461561c920bdf4d824abd

  • SHA256

    83ceda4bdd3e6463e1fe971ca4a8e5561dff1a8b6df18f0807f6eeaec6baf1c1

  • SHA512

    32f1a05e296fd78e4dd64c0a6dd58648e8fd695652ef1d7655e9c06c79272f2991a07927f922892fc8c34450d745d1bc124aa7066df5441f7481392627df9e3c

  • SSDEEP

    49152:v3EfH8IMkzaNxEz6ABiTrMQkyBG8RpjtM3qv2LuweU8hCQHtNzlT43a:vGH8IMkzaNbAQs8HtvhnftnTCa

Score
8/10
macropdfxlm

Malware Config

Targets

    • Target

      64800000797_IMO SYMBOLS.pdf

    • Size

      53KB

    • MD5

      2289f869ef41ed8a006e2833dfe50006

    • SHA1

      4d28aac128e97d27d7a4160a836f4a3700f1d4d5

    • SHA256

      0eda3c0fd6b9a7d00b65d3f7610156fa55cdffae450b4873a8ca8df17f1ee5a8

    • SHA512

      a9d46c6bda75b3402385296b60cb0e9d7bd3d528c086c8352a5b3cffb34e9dd00b201429a6b934b16911e2791f9f174bbcb37045eab4eb8d857566b396cd19cc

    • SSDEEP

      768:rtEGXKYL3H5dRQasXFRgB1leACqXJu+sNwQg/7FJ3gw6q1W7zkcSoc88NltHwdXt:rJKYbZdRUXFRTDM0wzJP1W7zkXoyX2Dn

    Score
    1/10
    behavioral1behavioral2

    • Target

      66500000797_MI-07_5400049, CASCSDE TANK UNIT.pdf

    • Size

      1.2MB

    • MD5

      59db3e6443136010a55d8af99232d6f2

    • SHA1

      1af66f2e5dd1e8606b176c983231d5130d46f27f

    • SHA256

      a772c6d4e876a81a2470060c20343cf5fee92beb05b262687f04f54dac3ae919

    • SHA512

      2b195e5675024fe4c6f72eb2eccbed2f155b710029e55cf55fd1ab2fddcbdb6762618c7ab0e93dbd11c58554d641a83113d78c9834422c293780a7c139751851

    • SSDEEP

      24576:9BwrTt49wTkN0dSpPgzcghhoB/4l4JpboFoIFMK:Tm50r0dSBgrE/9zbQoIGK

    Score
    1/10
    behavioral3behavioral4

    • Target

      68000000326_DP216G BRIDGE TEAM.pdf

    • Size

      292KB

    • MD5

      dcee8d79d72f4387ba6fd706085b99db

    • SHA1

      80e46020b630424d75ccd13f4c6a0bb329c1c91b

    • SHA256

      e0aeee30c87c458ba4d1c267f96c7b5911f8f2a3ccb61a113c45ee3a136ac057

    • SHA512

      317b488d2939d312cbe8824533fe14fda2f8cebf83204390c88317743ce73ef71c67d75b1def6ce1e59dcd15f10d42ab7d725c47afcc992e5710286e1acd8e9c

    • SSDEEP

      6144:Km3crQv7d678GwUVLhwTIG8CRh9F071zAzn7jkW+3V5p:5Mys8GwUVNvG8CD9qY7jkXp

    Score
    1/10
    behavioral5behavioral6

    • Target

      69300000159_TE352G-DG No1 CRANKSHAFT DEFLECTION.doc

    • Size

      168KB

    • MD5

      3c7212698f3e9959765d679dfca0947b

    • SHA1

      eabd0716ceb59c28a25162cfa69122edd063acbb

    • SHA256

      aaffb72092325e6d5d5c46846582c869509228d729151bc42b8269b671b7b4a9

    • SHA512

      412d40f92c500c8a6237532c2edfdc3bfa3f0b9b95e88d0c8741c1b31fe67cec1f149866d1b8afb5c162a6bcbe3a197fe5ff2a12fa0f95211b7b4f190090bef9

    • SSDEEP

      3072:TlQ7lE3GaGjRBVhtvMEwuYa/g7vghTT12:5QG3GaE3XtvMRdaS

    Score
    4/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

4
T1112

Credential Access

Discovery

Query Registry

5
T1012

System Information Discovery

5
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks