Overview
overview
5Static
static
5Fwd_ Desco...00.eml
windows7-x64
5Fwd_ Desco...00.eml
windows10-2004-x64
3=?UTF-8?Q?...?=.pdf
windows7-x64
3=?UTF-8?Q?...?=.pdf
windows10-2004-x64
3CERTIFICAD...4).pdf
windows7-x64
3CERTIFICAD...4).pdf
windows10-2004-x64
3PODER 2022123800.pdf
windows7-x64
3PODER 2022123800.pdf
windows10-2004-x64
3descorre t...1).pdf
windows7-x64
3descorre t...1).pdf
windows10-2004-x64
3email-html-2.html
windows7-x64
3email-html-2.html
windows10-2004-x64
3email-plain-1.txt
windows7-x64
1email-plain-1.txt
windows10-2004-x64
1hecho sobr...2).pdf
windows7-x64
3hecho sobr...2).pdf
windows10-2004-x64
3image.png
windows7-x64
3image.png
windows10-2004-x64
3tarjeta pr...0).pdf
windows7-x64
3tarjeta pr...0).pdf
windows10-2004-x64
3General
-
Target
Fwd_ Descorre traslado de excepciones _25000234100020220123800.eml
-
Size
7.0MB
-
Sample
241021-1hzs1szgmp
-
MD5
47caaf22a5722d5050e62a3efb83daea
-
SHA1
5575aa4e2a591673656e0571b4a83b7f81f85126
-
SHA256
9474c6bded887ff641ab3ddb167c57e919cb70719e238037f33d7682ec3c2df7
-
SHA512
1cd42c28d019a4240e435d65ab2d9b99d4e94efc870ef7d5f17e731b3f270069dd06f651c802554c3b479733d779d85a3073720863173b9711b487e2d675018c
-
SSDEEP
49152:rxMt5ygd5gZKuw7gzJ4avje8gYFHS+rpOnte5T9Q4BYJZx0yJEfmnAxVnI6Qd4rF:1
Behavioral task
behavioral1
Sample
Fwd_ Descorre traslado de excepciones _25000234100020220123800.eml
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
Fwd_ Descorre traslado de excepciones _25000234100020220123800.eml
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
=?UTF-8?Q?ESCRITURA_P=C3=9ABLICA_=2D_PODER_DOCTOR_JULIAN_DANIEL_PATERNINA_?= =?UTF-8?Q?=2817=29_=281=29=2Epdf?=.pdf
Resource
win7-20241010-en
Behavioral task
behavioral4
Sample
=?UTF-8?Q?ESCRITURA_P=C3=9ABLICA_=2D_PODER_DOCTOR_JULIAN_DANIEL_PATERNINA_?= =?UTF-8?Q?=2817=29_=281=29=2Epdf?=.pdf
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
CERTIFICADO DE EXISTENCIA SEPTIEMBRE 2024 (4).pdf
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
CERTIFICADO DE EXISTENCIA SEPTIEMBRE 2024 (4).pdf
Resource
win10v2004-20241007-en
Behavioral task
behavioral7
Sample
PODER 2022123800.pdf
Resource
win7-20240903-en
Behavioral task
behavioral8
Sample
PODER 2022123800.pdf
Resource
win10v2004-20241007-en
Behavioral task
behavioral9
Sample
descorre traslado excepciones (2) (1).pdf
Resource
win7-20240903-en
Behavioral task
behavioral10
Sample
descorre traslado excepciones (2) (1).pdf
Resource
win10v2004-20241007-en
Behavioral task
behavioral11
Sample
email-html-2.html
Resource
win7-20240708-en
Behavioral task
behavioral12
Sample
email-html-2.html
Resource
win10v2004-20241007-en
Behavioral task
behavioral13
Sample
email-plain-1.txt
Resource
win7-20240903-en
Behavioral task
behavioral14
Sample
email-plain-1.txt
Resource
win10v2004-20241007-en
Behavioral task
behavioral15
Sample
hecho sobreviniente (1) (2).pdf
Resource
win7-20241010-en
Behavioral task
behavioral16
Sample
hecho sobreviniente (1) (2).pdf
Resource
win10v2004-20241007-en
Behavioral task
behavioral17
Sample
image.png
Resource
win7-20240903-en
Behavioral task
behavioral18
Sample
image.png
Resource
win10v2004-20241007-en
Behavioral task
behavioral19
Sample
tarjeta profesional (10).pdf
Resource
win7-20240903-en
Behavioral task
behavioral20
Sample
tarjeta profesional (10).pdf
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
Fwd_ Descorre traslado de excepciones _25000234100020220123800.eml
-
Size
7.0MB
-
MD5
47caaf22a5722d5050e62a3efb83daea
-
SHA1
5575aa4e2a591673656e0571b4a83b7f81f85126
-
SHA256
9474c6bded887ff641ab3ddb167c57e919cb70719e238037f33d7682ec3c2df7
-
SHA512
1cd42c28d019a4240e435d65ab2d9b99d4e94efc870ef7d5f17e731b3f270069dd06f651c802554c3b479733d779d85a3073720863173b9711b487e2d675018c
-
SSDEEP
49152:rxMt5ygd5gZKuw7gzJ4avje8gYFHS+rpOnte5T9Q4BYJZx0yJEfmnAxVnI6Qd4rF:1
-
Drops file in System32 directory
-
-
-
Target
=?UTF-8?Q?ESCRITURA_P=C3=9ABLICA_=2D_PODER_DOCTOR_JULIAN_DANIEL_PATERNINA_?= =?UTF-8?Q?=2817=29_=281=29=2Epdf?=
-
Size
2.8MB
-
MD5
c4fe25d8ca6cd8030826ba153e157745
-
SHA1
d75dcfccc4dc6db557dabd738a7c65606b765a41
-
SHA256
64d3b8498a207c923eb75698f0b28bcbfe628027d67c3e2e847ec07a7fdbd74d
-
SHA512
efa8dcf8fefe0f8882d6470377743f0f77ec845a9cbd47a85c670729126ece3e48ff7c80ae107b9e9cc0ce2582d2237501c12c80036d28707abe1d6821d7ba46
-
SSDEEP
49152:pee3micTKFOoaBWPbnD/iKw6R1v6tbxK6O69r37/KNhvDOoXF:h3gaO5BOziKw/jKarL/KNpDp1
Score3/10 -
-
-
Target
CERTIFICADO DE EXISTENCIA SEPTIEMBRE 2024 (4).pdf
-
Size
472KB
-
MD5
18b15348ca79f77bfab06d54e1f44d95
-
SHA1
c0048962c24f0f40a101659bb68dab82b470a6b6
-
SHA256
28d874263458f114ee2bc3b8686f83cff23a5a29ef882d0aacf468f1a625ae0c
-
SHA512
eabf30d81493bff5bdc778b52fd40f104b5e146f8e1435456391fa8128a3ba8d667ed2d1e7765e9e39018cf641dea050aed0535b4e0e2e051e56fb5f61238f07
-
SSDEEP
6144:p4yPq+74p7w3QyJTAoVyS51tThX1rNNqk:NP/74+3Duob9tXVNNqk
Score3/10 -
-
-
Target
PODER 2022123800.pdf
-
Size
205KB
-
MD5
e3d04a392b21f8173b934fbe7ade64e6
-
SHA1
ce20356edc5d50b86e5d552992b37a01e5deb659
-
SHA256
dce984e192ca095768a511ff98fa78de43f3d75a6b0283a60b8f56906aa04b0b
-
SHA512
4da32a6deb2bb8fe1be15e2f794eb81a4dcb8997868243941cc3520dd9126c6ec539baea7c239e214ae6869869e7b1064910b3f58f281182e2a3bc4a5ccc8d65
-
SSDEEP
6144:WFqxvBUDKOwYUgTfvJznCNkM6ktY2MAxr53kw:2ZeEU+5znKXFNL3H
Score3/10 -
-
-
Target
descorre traslado excepciones (2) (1).pdf
-
Size
394KB
-
MD5
43eaf383f907c126aef74c20349e07fa
-
SHA1
bc3b48406c091d0a92365d0c6e518426c162d497
-
SHA256
53a57360ceccb08e7f9c49f813c72803942fcbe5dafde0f752f3f742f4cb0f26
-
SHA512
b750a205d146c1f5423df2bc569ec5846509bd911539f12b81761b1f1487207440fff427cef7f616615b348e1010149ab6417d6aaee7548f98c5d54fa4a6934f
-
SSDEEP
6144:DDenuk2pFTzfUppkXfr7nIS/t5VkdV0j1Z59w5zF/ooLj26n3+:suky5zaSIS/iwZ5a5LLj2M3+
Score3/10 -
-
-
Target
email-html-2.txt
-
Size
19KB
-
MD5
e2f1987bfd46162f4023425ace04150d
-
SHA1
64b23a2e43c0e0c82ccd34858bf3756d2bf78820
-
SHA256
e36246e9f5107e7b34c09167694452929d291b83ced17a4f47e599cae03d5394
-
SHA512
d6c2190eda7c7dcd1162292f82faa5a0a5a8563f9588ec9c2c791f11a0b595b97b0d8a874f217e1ec27557ccc1b58854595502e26a6c9593b43c3cc59f370f3e
-
SSDEEP
384:J7BmOTc10TD6LN6q6TKG66g2RES/JFW0jno:J7BmOTc10TDEN6q6TKG66gIEaM08
Score3/10 -
-
-
Target
email-plain-1.txt
-
Size
3KB
-
MD5
f7a080961823efeb1fdc922c69f07881
-
SHA1
47fd380e8f0f9468b707034d979ead98cb9e9ad7
-
SHA256
4e745df103cde8bf56408742724c7b36c5d1abc2ee74d1482c8ec71668afff7c
-
SHA512
bbfc9c94ddf2a3f09e08e49dc991f9f8f0843254dcaffad6c7b650b44a9e600badd80a62d4baddf79848c7bf203336e52bcd687be4933b56458e4b5c0ca051be
Score1/10 -
-
-
Target
hecho sobreviniente (1) (2).pdf
-
Size
454KB
-
MD5
49889e802bdb681855e9b6c45f99ced1
-
SHA1
79361de0ce4ff2587320c2eedd46bfa5fefa1989
-
SHA256
6b7c5ba564f2feb1578d923361c0e387eaff6b76cd41caa550a62c1f9061f9e1
-
SHA512
6f058c1ffef7963316d984a0af3d9ad5a22492c7f1c615573b44dc7376c97872d773158f503bf01fa5764df51786ffcfd04a7eb966415f195b5c3ad575eae764
-
SSDEEP
12288:1ukEIkMkVoMXLWRxfWTTTTT2126XmLZLlRV9O4+ro:MkEIkMkjXqt126WFLLzHv
Score3/10 -
-
-
Target
image.png
-
Size
291KB
-
MD5
a1c1e15469e2677e9338b70d0ac98393
-
SHA1
e04549d7b8ee24d07777b4168afdffeffc4e4245
-
SHA256
4c0eeba8cee3f6742a396bf9b3c9effc4c6c9d56f28d413f1feb0e42c5183d25
-
SHA512
0a84632b6fbd885372a772f0c9693b6b28421e2b8713eeac8bc6ad353a2ffd94f176ae4a4391080fa6f224cabecf73ebccc30746c443eb4af6ecaf4ed74188e7
-
SSDEEP
6144:J0yyAhWntWJyss0ynXVMxImJ4uIIiWf+4SFmK41M/5Mc:9HWnt+4nXiIbuIIiISFmR1M/3
Score3/10 -
-
-
Target
tarjeta profesional (10).pdf
-
Size
290KB
-
MD5
1404cc208461e6cfd4382fd36323d5fb
-
SHA1
5ae97f293f73ab968e660f8929c23ce91dda7fa7
-
SHA256
73f83a359ee5bfd30e1e8084534a50934184e142859143e54045b7d603c5c03b
-
SHA512
5c9866c50397fe21a0cda48e9c752fbb0061b0b4eeeab4adaf635b79d331a3f8bbdf5f3f89529a71e8b10997d1750dec6f26e5d7aa786633a41ca686f6ce77ae
-
SSDEEP
6144:2Xrzqv3BJW6QRFeQ5l2uxUGGla50zzPnJmfZE/5Gxa63/:ZHXad5cPpzbnEGxm/
Score3/10 -