b4c3d3715f78fbed02598d490f0961fb512d7deaea514b905782a0683c96f8d8

Sharing

Copy URL

Twitter E-mail

General

Target

Pipe Specials Tab.zip
Size

14.0MB
Sample

240424-n533qshf2x
MD5

922cf6e6a242d10d4b604e28b668384b
SHA1

d44a02f3048373abf77c6944718b5e1ce9e46b03
SHA256

b4c3d3715f78fbed02598d490f0961fb512d7deaea514b905782a0683c96f8d8
SHA512

774afc8c3c5cc4d7d6d11c9a8fad86ce463f84274fa1cdd67329322f705eeb1cd2298c6110c3812ed95b586ce4ca111850bf6862639067eff543b48dd58d50e8
SSDEEP

393216:p2e3q01VwxymWGgSKxcC+XFNO1Y7lsKxO1Yg+XH3VX5:p2e3Z3lDu+KD1J

Score

3^/10

link pdf

Malware Config

Targets

- Target
  
  BNG/Cheniere AML Rev. 3.xlsx
- Size
  
  47KB
- MD5
  
  014dfbe0ff069a99c230d3dd721a687f
- SHA1
  
  b89e2596e09b7593b765080bad92bdfdfe5193d1
- SHA256
  
  79f9aefd9b182a38f3456c5549260efc82c9393915f93160f4aa93a7fad76d6a
- SHA512
  
  3feea17019389da66ea156f428179d68657da08b3f900e40ea4c08c593237ca617be841597701d22a3dc4a680500aa5665f8727ea86b09c03a7d5e45f59fdf69
- SSDEEP
  
  768:yNEj6Cy0bouG4AVUoYf+uDgKHHvGqenVZON9oyr/oAkVnLEnwY:5jtouG5uFFHeJW8yD8C1
Score

1^/10
behavioral1 behavioral2
- Target
  
  Commercial Docs/COW - Confined Space Entry Permitting Procedure.pdf
- Size
  
  501KB
- MD5
  
  cd6df49dcf1689fd6a8c74a0ca26c3f6
- SHA1
  
  952e45f20ade2f55e516fa98992bde805d11009b
- SHA256
  
  f6aa1e6359241534e0c128478cd5e06b491818584fb9e03c32b964a5a00e68ce
- SHA512
  
  9ee291d53ed38213b916fae8250c6b294907da2f297f0742c010f6c98a3549dde854e64b2ebe739ec77abc4a5a8e883e88406d6e9422e19ccc2bdaaf14b5e851
- SSDEEP
  
  12288:ZqMzHFwAzsQXs4z//pJFvd9v44P1I424O75nsi58eJr9YrB/xEYDLHt+xj27BGEH:cwHFwAzsQXsm//pJFvfv44P1I424OtnG
Score

1^/10
behavioral3 behavioral4
- Target
  
  Commercial Docs/COW - Energized Electrical Work Permitting Procedure.pdf
- Size
  
  316KB
- MD5
  
  f95cbb5097ac1119223a066a1722ea65
- SHA1
  
  88c1e651d6c88a3cc3bda3c8a08331c39385a7a2
- SHA256
  
  4da25b09e443675dc277c0220520f98e8544b96858bb13341e285059f0b25bd2
- SHA512
  
  fac2dc8181b3a67868100d528f78f9d0f3aa982ae7490004af5885ad83f56fb78081948002e4e72a56363671c46de7f18201d4513828a80291cfc9994279d7d0
- SSDEEP
  
  6144:Zv1qemvpxgE0I9ftLtY4JR/WKdedZqvGds9hzAtvvZvgYAWv/hLmdvjkGzeUzQvt:ZUemRxgE0I9ftLtYmR/WKdedZqeds9hQ
Score

1^/10
behavioral5 behavioral6
- Target
  
  Commercial Docs/COW - Energy Isolation Permitting Procedure.pdf
- Size
  
  291KB
- MD5
  
  0b3eabbedab98a225c7757880222cf7d
- SHA1
  
  df50280e94240f11532bc15a2978d948c32e7870
- SHA256
  
  dcbefb1baa9523c84120382644cf3a6c57e373f987223ef7b4a26576cd7c569e
- SHA512
  
  cd67368b9b75e08a6928032756405b1b31467143ce94642e1ce2d06b57aee49db8b3ed70e531de8ef001bc52337eb8fc2251c24d7a7dc01b6b455fb79c7577b5
- SSDEEP
  
  6144:1CuqWPBBfO8YqEfHd+Pbt5JjJUOa0aojL1z3A2s7BxRR8/Gr:wVWPC8YqE/d+PblTaM1Q2sNxwer
Score

1^/10
behavioral7 behavioral8
- Target
  
  Commercial Docs/COW - Excavation and Trenching Permitting Procedure.pdf
- Size
  
  232KB
- MD5
  
  815c0b5b7685924e590ff8913db5c430
- SHA1
  
  2afb4b9f7929f033972ca7274bc15c11e09eb9de
- SHA256
  
  4ef9867a8df130c9e16137a59ad091cbdd81eca080cd93e2287c0e029ee63001
- SHA512
  
  4e4c034e8ce0e5c2ffbdd7427f93ab976abad28915c28bd2dd59877b9374d5c1961fb07afd04c768c93d0f573b35e939534aa0de9a26cdb7e2e5d2f402ef79c2
- SSDEEP
  
  6144:bhX3O0wASgENsChjuzgGQ5hqN2+UTuzGzCv:lXe0wyZCVqZQhx+e2v
Score

1^/10
behavioral10 behavioral9
- Target
  
  Commercial Docs/COW - Lifting Operations Permitting Procedure.pdf
- Size
  
  548KB
- MD5
  
  2fe1cb03cfc0e23b6067125d5b671699
- SHA1
  
  6dff8fbee105a2ea26a83301293168844e86f950
- SHA256
  
  d8281273184b32e54d8067f6e323553dad2cc5b67ce0580b454fcead2359767c
- SHA512
  
  143f85d8f09b1c76693447ea05083ccba9fdb3872783d95c9d2e58b17f0224b77928027e709eaa24defa9609b1f4767699ecea3bd15cc91bb2ddbb3901a2c4d1
- SSDEEP
  
  12288:Z8UiOlH6PxjS+EzqihXqUU3DC/1od+e3Feso6GtUEAegkVXd0jRMgZC+yMkEhlPY:K/OlH6PxjS+EzqihXqUUTC/1cn3F/o6G
Score

1^/10
behavioral11 behavioral12
- Target
  
  Commercial Docs/COW - Permit to Work Procedure.pdf
- Size
  
  714KB
- MD5
  
  2074418e7fdf85f62b117f6f308822c4
- SHA1
  
  bb7ee7acf1c3a209b059f5def5e7b3997968dde8
- SHA256
  
  8249ef4dcd5db99afe9c2aea20800907671b1804d7a2706a549a63f3ead34c28
- SHA512
  
  98147f318af3f99d83eaa7e735db998e5cc9f9c34c350f1e704d7be78a184c532e24b37c76b1217a4fec31172e736defb394b6b5a317c7551fea3d72b8f6b57f
- SSDEEP
  
  12288:Ap9JbAT6f/ARd5eaa5nyZe2rCk6ikj6Ct2XWZg5mecHB+NqKaiKGKfcZbJABAJc:Ap/Amf/ARdVa5ywOCCOP4XWZgc+NqziS
Score

1^/10
behavioral13 behavioral14
- Target
  
  Commercial Docs/Cheniere Prevailing Wage Labor Study - Heavy-1.pdf
- Size
  
  61KB
- MD5
  
  6597c134253397eb95a49d8ce3d2b153
- SHA1
  
  fb32388b3a26f5b5d5d0e2b38503ccef98de39f2
- SHA256
  
  aa15fc416f70ca1ce8d121ea80382e4cc852b59551fa3f391857530fe6812290
- SHA512
  
  6b84048420de9b8b02b9e4a36ead08e5ad928e2277991b4c03b6d1dc677fdb525d05e0de95b3b030a5f7fc85f7fe445f4fd2caffae8e7db91cc75a6c84b820f6
- SSDEEP
  
  1536:H/YaWsZcoff8FR+woTf5uv60tkofaH+ZzgRk5ghQ5JK/B:HQaWWUR+wo+XkyZdgE+
Score

1^/10
behavioral15 behavioral16
- Target
  
  Commercial Docs/Simultaneous Operations SIMOPS - Safe Work Practice.pdf
- Size
  
  246KB
- MD5
  
  12d74ea985de155e037bdafca25d5dce
- SHA1
  
  56e0e2bc37d130a91a8cd4494a620a791d2f0bd3
- SHA256
  
  4d06991ac96d86a1d5b6c83ea4dcb2f19b0e55550f381e0deaa0f2b0d89934ed
- SHA512
  
  d46ec3f1fda1ee11e0f323b458b18306f39c699d948113631b16af12d439ef92980e90055f034438a798c6e35d8cc6d95dde6e6c61d37202080f162a7c07b7cf
- SSDEEP
  
  6144:dvpvWXvNlvIN4dvx6vnvZNDPv1vi5Lov13vHrvmVf56y:dxuXzQN4dQPjDPtq5UZLu76y
Score

1^/10
behavioral17 behavioral18
- Target
  
  Fire Water Specialties RFP/Cheniere AML Rev. 3-1.xlsx
- Size
  
  47KB
- MD5
  
  014dfbe0ff069a99c230d3dd721a687f
- SHA1
  
  b89e2596e09b7593b765080bad92bdfdfe5193d1
- SHA256
  
  79f9aefd9b182a38f3456c5549260efc82c9393915f93160f4aa93a7fad76d6a
- SHA512
  
  3feea17019389da66ea156f428179d68657da08b3f900e40ea4c08c593237ca617be841597701d22a3dc4a680500aa5665f8727ea86b09c03a7d5e45f59fdf69
- SSDEEP
  
  768:yNEj6Cy0bouG4AVUoYf+uDgKHHvGqenVZON9oyr/oAkVnLEnwY:5jtouG5uFFHeJW8yD8C1
Score

1^/10
behavioral19 behavioral20
- Target
  
  Paddle, Blanks and Spacers/Cheniere SP CO2 FEED - Paddles Blanks and Spacers RFP.xlsx
- Size
  
  97KB
- MD5
  
  15d4228da668831af0007c4bdd5a118d
- SHA1
  
  1221c2bb40d0dba9e5e56b6d38843e3fa336d28a
- SHA256
  
  db9670e4520b320040356f558a94045b34f06d9c294a3db5577d3e1b127a343e
- SHA512
  
  2475568aed1ae34cb3ec69c18a689aec3ae64bc4b3e4b15afc6ade55009b073c2c621093eac7c76917442bc6bcf5424e840300ba357b6a336e5f03bef0cad9d3
- SSDEEP
  
  3072:i9FnBVIvQMkxzcM7cp6Xwr3oAwi5h0MXS7K9O045:sFtcM7cpqAwiv0oXC
Score

1^/10
behavioral21 behavioral22
- Target
  
  Paddle, Blanks and Spacers/Specials - Paddles and Specs.xlsx
- Size
  
  93KB
- MD5
  
  3b9f5dc761ede1f096b09afa2ff5580e
- SHA1
  
  44be8ecba9fc401ad889d07ad7a541dd6c960493
- SHA256
  
  620431cb3b1073df779894c64bbfad548ecd4fe0b8c7f1155003c9e561195450
- SHA512
  
  7ef41b8e5f6dba6d3d8776b46bb090cc2b1139c77f234f1fa345e7d41a4e9b2122c31f2ea2dc985e947b8e6f5c7069ffb324257ddd18577218c583489ee4a2ee
- SSDEEP
  
  1536:2eItsNVuxvRCP3GAyq8qHS+snjVSkIXtOqsFHVl4r7r8bKeuIGESzyaE1KQv/lbY:2iu5RCP3G+jHSrnjEkIzsVVl4rX7Iwzf
Score

1^/10
behavioral23 behavioral24
- Target
  
  Paddle, Blanks and Spacers/Tech Specs/A2A_Rev00B-4.pdf
- Size
  
  417KB
- MD5
  
  f7630e8e9000cc394422fbdd805f4983
- SHA1
  
  6f7bb0cdb690d9d33b8668fbb48c5a0b3102c007
- SHA256
  
  0551c70883b7d12c683d4809484b129b8f433cf62dc969e4f9828f2676e6ba2d
- SHA512
  
  c378471975326b99e5ce89e3ec6cb83bd99cc61c00d620c53cd225da9098843b11c3b5393e66ec59a6316b770f75cbf57d8596a4e78764f61f8d741b9eaaa3ef
- SSDEEP
  
  12288:vpRC4GbxtmRG5KOjFSGPygt77Q2MQkEs75/hir:x8pxtgfOjFJPyWZMQkEMhm
Score

1^/10
behavioral25 behavioral26
- Target
  
  Paddle, Blanks and Spacers/Tech Specs/A3_Rev00B-4.pdf
- Size
  
  419KB
- MD5
  
  84c27c930594837a40f7e080691a565d
- SHA1
  
  f04a49bde0a2f64bbb646cadee440899c7da4cb0
- SHA256
  
  30ab5c46d67f9bdb34deb1a3cfe6fc537f46772a7b7e1a7c5ec086ee13253cd5
- SHA512
  
  ef280e74f3f4aa34eeae3e4cc6869b6903701554fb5eb64ae091534b74f0bebffead324ef9eab2da2f67b04d779ee8c45eaf4b82963b7ceaf81838702479a1e7
- SSDEEP
  
  12288:RKRC4GbxtmRBI6sgDuzInXhz1cw75/hic:k8pxtgeBgDuMnXtWQhj
Score

1^/10
behavioral27 behavioral28
- Target
  
  Paddle, Blanks and Spacers/Tech Specs/A5_Rev00B-4.pdf
- Size
  
  413KB
- MD5
  
  59bcf029b5eb1226d2c70708d7d845e2
- SHA1
  
  5e91cf07a135cf94045025801eff689b7d100cca
- SHA256
  
  49c788ef988d5dbf70a8df97c2865c307bcf6cd0b9d4c9005e6aa9727cca25bf
- SHA512
  
  77a3fb3a43cb7c1ee3184a158c2a504931afb911af4248d5bcde52dda080619c3bc3afa362a91060c30f97b599557513d777398ee64d7159e6adee6c1968f617
- SSDEEP
  
  6144:Ds56Z+OZbGPDL0sYoEU6iGFOdq7TYmMEnjdyuOg2EjLvnbXaZHyHzoXlzRMrXCud:wIZ+ubpsSiuzrjdR2EjzeZSTGg75/hiy
Score

1^/10
behavioral29 behavioral30
- Target
  
  Paddle, Blanks and Spacers/Tech Specs/B1A_Rev00B-4.pdf
- Size
  
  414KB
- MD5
  
  cdd5318d21c82ed8dc63f86ea9afc4b7
- SHA1
  
  a5088f0218b00e497ecb67614c9e27230fb67324
- SHA256
  
  f7d525b7314605fded64b48e0a192c869e603b2e661fc28bfc867d7599c7d433
- SHA512
  
  532b68734fb62407d01decf6a9802495c2c0c47f458cc0345e5120826917e8abb88f1cf33e69caff14c0b8a48385041d13f5bab1ef614f4628c417fc7ddfa360
- SSDEEP
  
  12288:u1LdO8RSGm1guWFdZKsSNluzInXhz1cc75/hic:z1lW7VMNluMnXtWchN
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32