5af84cfcae4c4ea5ad996a5803f6c5728f28adfb3817e2ab3a57423d0b70cd23 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

MAERSK_BL_...Yr.pdf

windows11-21h2-x64

6

Sharing

General

Target

MAERSK_SHIPPING_DOCUMENTS_wYr.zip
Size

157KB
Sample

240527-s3kktsac22
MD5

11595be7149fcca6c06907051421efd7
SHA1

c1635b87be5de272c72c592c9439229cd02638bb
SHA256

5af84cfcae4c4ea5ad996a5803f6c5728f28adfb3817e2ab3a57423d0b70cd23
SHA512

c14038d9f489b4f302a1132721784c9b46a29512039bd3a7c8589cbd2b97640818ca35e5858dfc41ef1cbd03ae56b0c4f4a8042fea91e1186c3f777f7acc1224
SSDEEP

3072:n0ccccchioRdzprjssLUwLW/I1uRql6wfzI0L+ejiO0IlZ8YSFsGDR17:nTHlBjzi/uuRq3LI+3jiO0IlZDosmV

Score

6^/10

link pdf

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

MAERSK_BL_DOCUMENTS_wYr.pdf

Resource

win11-20240426-en

windows11-21h2-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  MAERSK_BL_DOCUMENTS_wYr.pdf
- Size
  
  157KB
- MD5
  
  a6c29bb6f1dd308defe85b8f50cbce3a
- SHA1
  
  0c41de35f9e8e6e325f00d0e62779051a856f8ca
- SHA256
  
  ebf85162788564b359767f3f3875af8c756b3a1c6abfbb5ca824e950c3a91c40
- SHA512
  
  5cae3171f5326884ba75381f1833c770b17f73f426983b13cac996a70418a005cf1412bc67fccf26434e284beb1a15ce43cc2f4bd1e36a51bb5b283a7c158059
- SSDEEP
  
  3072:c0ccccchioRdzprjssLUwLW/I1uRql6wfzI0L+ejiO0IlZ8YSFsGDR13:cTHlBjzi/uuRq3LI+3jiO0IlZDosmh
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy