2a422b69e3dd9dbaaf783a9e9efebd4ee416e7a6fa86d58eafc6da27f06aad24 | Triage

Resubmissions

23-08-2024 17:42

240823-v91xhazelm 5

23-08-2024 17:33

240823-v4v43azdlq 5

23-08-2024 17:08

240823-vntw3axbjb 5

Sharing

General

Target

404995b3-4da3-5767-e1c1-a037b6011fe4.eml
Size

17.4MB
Sample

240823-v4v43azdlq
MD5

2af4aec4b9bdb4edaa1ee1f8a1dcfd2e
SHA1

969e2b746d8b69ae0e4b1ed36fb6517a16135686
SHA256

2a422b69e3dd9dbaaf783a9e9efebd4ee416e7a6fa86d58eafc6da27f06aad24
SHA512

c4cceadd1ee20216dec5a88a4089de4d72ac04c721087cc1b8de35b701ba6a7637ba6d8b9130f667ce55c6478e4ace66412a9ae4e03fd4740780a8e83f997c45
SSDEEP

49152:Kkm5X+eLUNx9jpd3db0q2LUmTlKwf59Q/R4PeUY9SiDAmRwjYe7XcUGOMky/+3dG:t

Score

5^/10

discovery link pdf

Malware Config

Targets

- Target
  
  404995b3-4da3-5767-e1c1-a037b6011fe4.eml
- Size
  
  17.4MB
- MD5
  
  2af4aec4b9bdb4edaa1ee1f8a1dcfd2e
- SHA1
  
  969e2b746d8b69ae0e4b1ed36fb6517a16135686
- SHA256
  
  2a422b69e3dd9dbaaf783a9e9efebd4ee416e7a6fa86d58eafc6da27f06aad24
- SHA512
  
  c4cceadd1ee20216dec5a88a4089de4d72ac04c721087cc1b8de35b701ba6a7637ba6d8b9130f667ce55c6478e4ace66412a9ae4e03fd4740780a8e83f997c45
- SSDEEP
  
  49152:Kkm5X+eLUNx9jpd3db0q2LUmTlKwf59Q/R4PeUY9SiDAmRwjYe7XcUGOMky/+3dG:t
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  =?UTF-8?Q?Tu_c=C3=B3digo_de_referencia_de_Efecty_Netflix=2Eeml?=
- Size
  
  34KB
- MD5
  
  e797cf36b0e719b1c0368b44f5d13145
- SHA1
  
  1727009b8647938ea75fdb65bd327b80ce1351cf
- SHA256
  
  c4604fb69be9d30bf2d3d7648e1eec4b290dbad0148f6eeabc656fce595856eb
- SHA512
  
  f6af6575e98ad24f3f1e02a7c1f4ad89f0ae8136b48344f1969578ba07d8ccc128232104a9e6c5276c893e8061f501a59bd1fcd5cc21e4389d8adb332af3c53d
- SSDEEP
  
  384:R6x4x2sqFCvLDWLLLLLLLk8H8861ktIA66lytxmiPgRYo7:F2FCvv861kc6l/kaYa
Score

5^/10

discovery
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  email-html-1.txt
- Size
  
  34KB
- MD5
  
  16cfa6796d36413a41e71d8ffc0e0f43
- SHA1
  
  198d83ffa19ceb8d09e87055529ae4b7cb050149
- SHA256
  
  e5781c5337130fb2eccfd8aec296bbb4ec4e72470d06e40277e097157ee0ef6a
- SHA512
  
  e96c91f61ef802941dc9115eacb74e5779c16f5279c0d6e804840a2c7e6301b7ac6eeb1ea974e0e523bfd1b8c108f73735ce9d7307a81b30dac0e1466f8a514a
- SSDEEP
  
  384:Vx4x2sqFCvLDWLLLLLLLk8H8861ktIA66lytxmiPgRYo7:M2FCvv861kc6l/kaYa
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  =?UTF-8?Q?informaci=C3=B3n_lote_Fahir_Redondo=2Epdf?=
- Size
  
  202KB
- MD5
  
  ad58a5a1e2efd98874ba5fc3a9e7c168
- SHA1
  
  d96ec6d550df14c8cf198a6a0e6920d3db23eae2
- SHA256
  
  dba92d09f5a90f6b10df75e4e967dff57fc65beb7f74ff5894243b31b914d380
- SHA512
  
  28f3b39940daff80577400fb3a4dc4408fae51df9edd836d20cec4d703b5dcc3ef2fc4944e2db7f7afe20e0a558062005de8e2c749ddd56e915e68255883b867
- SSDEEP
  
  3072:BDASKb3ASK0iASKwLASKhMASK9+ASKaBASKWRASKyXDASKnWZ:BDezeVe8eie0eWegeUe2
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Cert_'agosto fahir nuevo.pdf
- Size
  
  131KB
- MD5
  
  470de24a7e502c3886c1d7aeeef70da9
- SHA1
  
  45bc5f927e0a45f645564f16449a1f2905098ae9
- SHA256
  
  61d41027219fec10cdb15a4d1fc83a8517845a4b15c301a90b8eb09c296012db
- SHA512
  
  29110ab15d5828300f9b9c3c817e73f3888397edb83224243af6734b003e31d127f2a9cc4dbad71bc48a59884b802be8669fc4d8c376edc690e763ff9edf2231
- SSDEEP
  
  3072:llkKSnNzifG5iWih64YUE2PDRUUrMUYy7l6x+tRA:NSNzQhsUE2baFUz7lEqA
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Contrato de arrendamiento.pdf
- Size
  
  5.0MB
- MD5
  
  ddb7b0d9f2028a88087fe8ebb35c271a
- SHA1
  
  d30f67408aa2c5d2757ed5701ffd5d0af58685d4
- SHA256
  
  532fb656a710323a30b162c2aa4fac7224f0fc7146d32726d6b7a332468e6891
- SHA512
  
  812beaf2d900db885e1d4f025aaa0ac323129aace73f5e69f2a4f3213d792cc7ad29fd9988238b9422cb4e2eb20dc4c5691694ffdcabbdc946c96385460d630a
- SSDEEP
  
  98304:U3M6v3mpztjN9uS8zgbmJAGyUpYDDsQ1J8m3/SgXV:AKJjN9j80bmJAvzsQ/36qV
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Des_'20240816'.pdf
- Size
  
  104KB
- MD5
  
  08216cbf9c0bb526f2bee8bddeb04163
- SHA1
  
  fcfb3f69eae381327ec9c3a0deee75674ce6f846
- SHA256
  
  e9ad8006e9078272ff160d30d45c796b93684d00fa2d3d212522d28dfef4b61f
- SHA512
  
  fd6b1d5a401d76f69f7d7a244fa881a979bcda39b575c7864c799dfad430165243309835953676fe68e0516c9642477ffbc3ea5a98c850041468021cbf3b06a0
- SSDEEP
  
  1536:wkDiLdHhnnGJhUGKXulLxNlu3/P6c/tFFYXoxVdXlOR/dTJ1NIUKuhbMgfighb:wDdHhnGJd3NluPPZDB4RFTTmUKuaDgh
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  IMG_20240823_0001.jpg
- Size
  
  581KB
- MD5
  
  5268f92b733274285ee94ad336763827
- SHA1
  
  cacde31bf2d04b1bba35bbdee657f3239acc9292
- SHA256
  
  f5977e4084312a654caacdb33e1b5333d8a5ae00887f5ed84363a53d97627501
- SHA512
  
  21da1639ecea4a54dcb3fde8e798d4a63fbed8381e4dc336b990deec5d124c35d1a4afb1fdc3f419fa5b03ab8e35a239f3a4d9b236434251a0342263236a7a6c
- SSDEEP
  
  12288:fMFiZ6jj9RUtj7twUs0K22epTXNUoLfQ6I+Ps23GsKR5bSUTHsWVZk5:EFiQRw7tw7Je/UC++023GsKR3RZ0
Score

3^/10
behavioral15 behavioral16
- Target
  
  Informacion Fahir Redondo y Adriana Arriola.pdf
- Size
  
  203KB
- MD5
  
  8104efcfaa410d3f7a94247c925543ec
- SHA1
  
  faf8603fb73eacf5ecfc886691d95acf086efe26
- SHA256
  
  12bf6264dee1cee9bcae97fee7dea6a891a53574fed6f4b5817f9fd4e2b9f18c
- SHA512
  
  0b74af81f68af4590051b1dfb3c399351b09fdcd2e20c4314d39f7a5accf4c4ec41d96d975467399f3db1f22851ac593ebde9d94993ced757f4eaff1747374d8
- SSDEEP
  
  6144:71JsTvurqp8+jlTb3hmgto/wjCh4ZoDmdGS:71i2O+WRbxmNiCh4ZTGS
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Recibo agua.pdf
- Size
  
  1.2MB
- MD5
  
  63498cd33404ecf4f22445e98310459c
- SHA1
  
  132e7446fedb2855bbc5cf1b2bf12a9a49307aec
- SHA256
  
  6ca657c0f75aca3ea817778e664480f5c281ce1665501995c124117fbf189bf2
- SHA512
  
  30a3a2317838cd74037f2ce29730988a24f2abb471d4df5dd1edab311bceb6351f675fa35bddcda02ce1051e846cf0a9235cb5d4e7c8824d65fca40be48362f6
- SSDEEP
  
  24576:qfkJo09ZsoejuijoTVjwVb06XhmGaJsG70:00fsdx0TVjwVbDLLJ
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Recibo luz.pdf
- Size
  
  2.9MB
- MD5
  
  318fbcf17ec39457f1e515e5a90a0dde
- SHA1
  
  e38a226b7e1fe5227c70d869d3bd6c57b3ddb837
- SHA256
  
  d289215d4c4faffadf08be2cfce1e39a51800940c9d566fce783a9366f8a9f0d
- SHA512
  
  fb710897719944e8e0b9f0acfcb1f6faf725f5ffeb92c3a27cbc8e5b50a18fb9d61d31ebb299d0e4db47cf07b35c2eb5bc444f59a4a66fb1559780198bcc5361
- SSDEEP
  
  49152:Oa0CHSPfsXmSl9yPWeOcq1tzuXkYGEnOOYXHyZVVyCdLG:ODCHSPEXizOP1tzuFGEn/pTnk
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  b0cbaab0-9f98-482b-bbea-5f99fb8a1fc0.jpg
- Size
  
  39KB
- MD5
  
  76e1f2e537fda7e782f4e85bdf92b830
- SHA1
  
  eff9fbe67e16c113d2a44182263237709cff0684
- SHA256
  
  0c50c5060d36222d974428b02dbd5f6e9884ae71a0fd20be71c4c17883d604d1
- SHA512
  
  25e12f50e7a1c4f9d1dd32d6cdf2b5da8a479a6e8cd5e2f23bf8eb99aa0c284d0a3e560fac0f4161b65b337fbf3f0aded5b4b1feb4c9c48ae3dd8a02c41faf26
- SSDEEP
  
  768:/8wMengggggggggggKuBVRpoUaZMXQloj1efKAKzRNVBIkdhfDAbfacIvb:/8wXgggggggggggfVCZmQlK1UKXLvdpB
Score

3^/10
behavioral23 behavioral24
- Target
  
  cedula Adriana Arriola.pdf
- Size
  
  143KB
- MD5
  
  37739a549e29c14e37135d8e515d1542
- SHA1
  
  6e03cbe90a49ab43a762799f7c2bb31026788c34
- SHA256
  
  bc695d9f272e61b9460f79176a1ef4c66500e03cdfd4832b0cc302c880a02a0b
- SHA512
  
  82cffe0043b223d995a0ce65bf5695cd941ddd98e0ebda50760b77bafe7c12567b7a3d67f95e3214cb689451a3c6be002dfe4ee071f80ab2ae6d828fca61e5a1
- SSDEEP
  
  1536:eF2e5jABGs+ldviXWClJJF7xf3+BXemgr/+43WTjOZDe2FENiwJa2faVbaJ6dIF8:khjAB0lefYBXemOZQ8ITfJBIaGVC/hW
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  cedula Fahir Redondo.pdf
- Size
  
  195KB
- MD5
  
  efe61fd2b7cb0bd0fe9eea730dad34e6
- SHA1
  
  70027ef56ea99dddd8d6ff4233823024a7323e66
- SHA256
  
  680a5ec3766f7f705c843789bd87d06c004756add1f6a1152ceb8448e1220e8a
- SHA512
  
  0d393dbb15ce99ae0656a3e4feb9b094e94576918b63d74fe97b8fda01a3d7349bf44e8ac828989eb5e1cfd0593df8a75e5568bc3d0fd7edd395b082b5a88a7f
- SSDEEP
  
  3072:J9V6vaDcFdK7p8An4apuALsbASG1XL6qZKUeKypwu3TQKzt0OLIbZ/YB1vfQsVC3:J97DU0T4ONL6OTLiQVDVk139C5t
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  email-html-2.txt
- Size
  
  1KB
- MD5
  
  5ad09878ca0bc0dfa0af5daa9a0837aa
- SHA1
  
  11166c19e412164f5d5dc9abd941c4872448a469
- SHA256
  
  96be1dc4f964e4fc103b038c8da18319698b0171ecfc2784f4bc6531ba4d012d
- SHA512
  
  a3164eb3fc87a8862e706aad98fe50126276394d4373f1ccac1ad4b4e69684e8efa98411e5676d4a5433608319fcea95493893e102393cb9682a854849fd451b
Score

1^/10
behavioral29 behavioral30
- Target
  
  email-plain-1.txt
- Size
  
  693B
- MD5
  
  c94df886642b7ebd50c88582a81396dc
- SHA1
  
  b86111d41281af690008cfda1d53e85f513ed2b1
- SHA256
  
  e6c1045ceefa9f781c428281e49e8678f119b405d4e203178b59ad8b26a9f2b0
- SHA512
  
  2f3b397c5988ec8ea0cbc6a116c4a81d39bd00fc7de8917e07bf9a66d18a70c192796fa78c95c3b66f02e622ce66b94dfdf38f60beb31c61fc038dec6d59d9d0
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32