Overview
overview
7Static
static
6analisis.pdf
windows7-x64
7analisis.pdf
windows10-1703-x64
1analisis.pdf
windows10-2004-x64
1analisis.pdf
windows11-21h2-x64
1informe_payload.exe
windows7-x64
7informe_payload.exe
windows10-1703-x64
7informe_payload.exe
windows10-2004-x64
7informe_payload.exe
windows11-21h2-x64
7General
-
Target
analisis.pdf
-
Size
212KB
-
Sample
240521-rq5vkaha43
-
MD5
f28baa94ff32d8a4b006004b3c9c4261
-
SHA1
54677341b7e233d8c0b6dcd38dc5e9d1a58511ef
-
SHA256
cc48d8c645c27dd850652c0a66e22dd2e1b62bbf6ad208f94b8f5847684a8d17
-
SHA512
853dc19d16e4387210e63b3de74c044db802e429bf12d082e00b66f127bb64e742cad32e2b1f23661a11cb47341d7b34e249533b2fb15a3815ed81b677f64989
-
SSDEEP
3072:cyu1+HubW8lW1Sn6WEQKLy0jSaMWyAKCxxDghhiR9j4BIIADNI63Cv3UOLn5ZVv1:cyu1PdWEHEQlWyA/7am9kBAJIECvv5bd
Behavioral task
behavioral1
Sample
analisis.pdf
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
analisis.pdf
Resource
win10-20240404-en
Behavioral task
behavioral3
Sample
analisis.pdf
Resource
win10v2004-20240508-en
Behavioral task
behavioral4
Sample
analisis.pdf
Resource
win11-20240508-en
Behavioral task
behavioral5
Sample
informe_payload.exe
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
informe_payload.exe
Resource
win10-20240404-en
Behavioral task
behavioral7
Sample
informe_payload.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral8
Sample
informe_payload.exe
Resource
win11-20240419-en
Malware Config
Targets
-
-
Target
analisis.pdf
-
Size
212KB
-
MD5
f28baa94ff32d8a4b006004b3c9c4261
-
SHA1
54677341b7e233d8c0b6dcd38dc5e9d1a58511ef
-
SHA256
cc48d8c645c27dd850652c0a66e22dd2e1b62bbf6ad208f94b8f5847684a8d17
-
SHA512
853dc19d16e4387210e63b3de74c044db802e429bf12d082e00b66f127bb64e742cad32e2b1f23661a11cb47341d7b34e249533b2fb15a3815ed81b677f64989
-
SSDEEP
3072:cyu1+HubW8lW1Sn6WEQKLy0jSaMWyAKCxxDghhiR9j4BIIADNI63Cv3UOLn5ZVv1:cyu1PdWEHEQlWyA/7am9kBAJIECvv5bd
Score7/10-
Executes dropped EXE
-
Adds Run key to start application
-
-
-
Target
informe_payload.pdf
-
Size
32KB
-
MD5
8606faa60b008da0ce43437dc81be1e2
-
SHA1
13444f825362a6a946b3a91b13784d78fe3fc422
-
SHA256
4de3dde86d66424d79fcb561ace579d6b22919f52505aa177bd161bcf4157c4f
-
SHA512
e23e310399baf03034b51f1be445ea01a6ef2ec4f82da43af6c4639dc28834d49119ddb83f40019ff6c9b45124da637d579ef5289620a13a7078284c7fead33b
-
SSDEEP
384:3ZzPGPxHwgaWu7/+ulyEMZBSbtR+aHD7N9wUjOreoKxDIqPODwPMShkm/cbFk1GJ:3FqiDZZgzw0qBPbhbO9Ysax58svre
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Adds Run key to start application
-