7262a1cc0ab7a4d4b18133b20d091f574d102bdff4ab6e4cfd536fa6001c2c19 | Triage

Resubmissions

12/08/2024, 08:47

240812-kpzhtstdkk 5

12/08/2024, 08:32

240812-kfqjkatamp 3

Sharing

General

Target

ef282b1e-d2f2-4ea9-9d32-08dcb9fbc98f
Size

1.6MB
Sample

240812-kpzhtstdkk
MD5

87238a84ded30b1ad5d95ee08840b7a4
SHA1

8775213547083717880e4e81f192d4891d117703
SHA256

7262a1cc0ab7a4d4b18133b20d091f574d102bdff4ab6e4cfd536fa6001c2c19
SHA512

cb99c14a709e864549a75fc4bdcf0eb01deb693671eed9616e8f5cdb659c2375630d57b56e1c2ae9c207b181ebddb82df311d36ed0cff6c61e645f674f8a4a50
SSDEEP

49152:lr7ql6zLsIwt932PViGKiAPHof46BDfBpjZKEd:lr7ql6P9PVi1p/ofHVpjZd

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  ef282b1e-d2f2-4ea9-9d32-08dcb9fbc98f
- Size
  
  1.6MB
- MD5
  
  87238a84ded30b1ad5d95ee08840b7a4
- SHA1
  
  8775213547083717880e4e81f192d4891d117703
- SHA256
  
  7262a1cc0ab7a4d4b18133b20d091f574d102bdff4ab6e4cfd536fa6001c2c19
- SHA512
  
  cb99c14a709e864549a75fc4bdcf0eb01deb693671eed9616e8f5cdb659c2375630d57b56e1c2ae9c207b181ebddb82df311d36ed0cff6c61e645f674f8a4a50
- SSDEEP
  
  49152:lr7ql6zLsIwt932PViGKiAPHof46BDfBpjZKEd:lr7ql6P9PVi1p/ofHVpjZd
Score

3^/10
behavioral1 behavioral2
- Target
  
  sample
- Size
  
  2.1MB
- MD5
  
  671987166a6843f9576faf929136c35f
- SHA1
  
  2853d2853a07ba54617da4ee90a00eba17383f86
- SHA256
  
  3be9a3cfac4fb73d570eb59a2bec09766d554a96b4e93a73acba4e7eee70b8bf
- SHA512
  
  7c6b0e9502b9a3ac3c8678cb87d21dc73a39e484ed2a36279cfca8fe6397465ff88b7d64832172cd281bdabacb133880285c639bcfd35aa24bcb58cf964c6321
- SSDEEP
  
  24576:GUwJh7jT0vLtkaieM+YjJYmreP0+v8BKwG6dcK6792frtnagBecv0xK4yCRujCuc:GG8Zqg2O+h8p5JlMlU2
Score

5^/10

discovery
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  HBLTSNCNC17066 Arrival Notice海運 - WAN HAI 271S216.rar
- Size
  
  1.5MB
- MD5
  
  e9f05ec77d8cc362ff80a34ef1fc17ec
- SHA1
  
  d61b526bafde2bf775f09773b77d0af0661a6983
- SHA256
  
  68f0db28467bae3dd08af9abd3585833f1d9b9b97fd548b6bc7ca7882f765181
- SHA512
  
  a3bab17811e7ccb0e168d0076d1be0aa159653c133c6502d1479d6afd5daf56fb8f3acf18241269a0a691c5e782aa57bfba33fff94eaea92b74e9867273c87a7
- SSDEEP
  
  24576:sBbpkynFLv1VenFP+bheqqXpmQ7RHKLvULmucVyp3J179+dg6LD/u62U5NG28BPH:sFLvSFWl+Zlm/Ip3HB+dl/u6hGhuzO
Score

3^/10
behavioral5 behavioral6
- Target
  
  A_N-啟碁-TSNCNC17066-0721-LCL..scr
- Size
  
  1.1MB
- MD5
  
  27bff21251401bdc53507869909489ac
- SHA1
  
  9799ac564ccff08975c682be7f9f300bafb452c7
- SHA256
  
  6b21cf5ebc20615576167925b27adad49dd095dbca80a7a47101fa824295057c
- SHA512
  
  eb6269a0355fa5fef9f34cc13d81ad44c5a44b9a81dfdbe0f88ccc2474988239d1384adb6745abe8e572f1a9a5478dea99d220864e4182b906448dfe4086e5ba
- SSDEEP
  
  24576:w5drKL26BWweIJ37Lb2Sr7vTYEg2ELQtQJFBXhNw2aJm:wqS6BESySr/Yr2BQV
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  HBLTSNCNC17066 +Arrival Notice海運 - WAN HAI 271S216.scr
- Size
  
  650KB
- MD5
  
  c779cc1fe825364c13ae5f33117eb5cd
- SHA1
  
  b279806541f457da98a8cc5c28d99a2c6847a865
- SHA256
  
  913088dfb9d020b0d590b474cb80dcec701eedc7494a0a4c4854853bb21fd2c6
- SHA512
  
  67375326422871ed3e60d01cea86dc8d4d625749e76c32e1d84f416298a979637c1590a7d0c09ed082f16bc451f6e6db12fba01467c0ca115142b81a750038cc
- SSDEEP
  
  12288:1O/WtWzhKLwODOngkIcYVxytl2bs6AwrLbo31zAKfjR44JQ/i3KaDv:pahKxOng0tl2bs/wrIFEqJiE
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  email-html-2.txt
- Size
  
  8KB
- MD5
  
  69d1381de137513db595425d82aed122
- SHA1
  
  f9c965e47846beabc518fca0a74d481cba354f8c
- SHA256
  
  ca6c388176e3319bf689794d5dcdebfb0c66fdcddbeee6cea6cb6e4b68be8819
- SHA512
  
  2bc8ae5c23ec1972089c5353af0e1cc2288512ef1b4a853e7a2aa7210c4e74c59366b8ff93c48ac18d036e26a65c6daca24af80004f843f9c383b895d5474952
- SSDEEP
  
  192:hcHHeu2Tt3gsDJD4ABRjr+HpJ+HTWI+1pFSbFVofFLFYbFbFw+bFjF5xhFYbF+hT:hcHHeBTtwsDJD4ABRH+HpJ+HTWI+1TST
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  email-plain-1.txt
- Size
  
  814B
- MD5
  
  e4e4b3511d00e19ae1b95638f71e9c36
- SHA1
  
  81986c9146baec7fd3afeb900ecfdf489558bf57
- SHA256
  
  c0b2e779bc232d8f647493b894dc98c557b72b965c5c043ac5abdb612a56bdb7
- SHA512
  
  d95101c8414d6f7e4fea034954a453f7d7cb0a8f182aafcb15beb849911f58f146c61e30192db720ecec88e8b514c031f36556f4bda7199400e24ff76042b704
Score

1^/10
behavioral13 behavioral14
- Target
  
  image001.png
- Size
  
  11KB
- MD5
  
  fee714a5d3688dc605ac8fd8d4abcc53
- SHA1
  
  428d7488ebc6cca4ca2afee4b99e7c183f091772
- SHA256
  
  2c92336ecfbc8edab140b090ac57d17f579dcb11ea8e5b67e7c7fd3d40f2a667
- SHA512
  
  6fb8602a4477a445b13f7c9f17b69899c02583e32ece6b561b819489520b77501ab3b6b82c97f9b43ea8823134a8a91aae46b5b01135075071ea412311a1b7dc
- SSDEEP
  
  192:75WFdKNWzypsgHn03yZf7J3k3kevhSdTaH3M4yvN0Txp1atni:NWLKNWupsgH5l7u3kegdTaH84yvN0wxi
Score

3^/10
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16