24b4ab604c01ad537704980ce0e2dc8f97ef4f59e0453918eed6de272dc93ee0 | Triage

Resubmissions

19/11/2024, 16:46

241119-vabhkaygrk 6

19/11/2024, 16:43

241119-t8gxkatjhj 6

Sharing

General

Target

RV_ INGENIERIA Y SOLUCINONES ESPECIALIZADAS SAS (ISES S.A.S.) NI.eml
Size

19.9MB
Sample

241119-t8gxkatjhj
MD5

1323ecada3d55456f4b646139538338f
SHA1

d35b93cae135c995fc3328dacf068acce428a076
SHA256

24b4ab604c01ad537704980ce0e2dc8f97ef4f59e0453918eed6de272dc93ee0
SHA512

57bdb5c55001bb21057000a91af5c791f4a945e16274470694e1aa9a6d2434fc228bcbe044003710cced6ab59feaead67cd9149d29d6892b9aff6b2676ecd836
SSDEEP

49152:nCmXboNIzY66EgdosSkFTkGiF8txDbG4DXpdBgEGdcGosEnbiAg3EDYzWEbK61AS:Z

Score

6^/10

discovery evasion link pdf

Malware Config

Targets

- Target
  
  Carta solicitud acuerdo de pago - ISES.pdf
- Size
  
  432KB
- MD5
  
  82409d40a7f55d632c56420b6237dafe
- SHA1
  
  209a58e044a3aaf9c9660e979f5a54b0995ff2c2
- SHA256
  
  824cb15c99b803bde8e16f411a3e03efb80e27d03dfeb000184f745ad4166504
- SHA512
  
  f28c9f53f6f3bd3e78e0803c6a5902a6e294872dacdaee64ec918030175a5ac5bc0a4369b4d4a8b74638d35f336b46b8ae4ee422b4a7e5b1bda65ffaa3d3bb3f
- SSDEEP
  
  12288:k0mOA9nr+Uv+UAROk8mrCFobP8kS0LGqmwziJum+12QNZqtX6Y4z:k0mOA9rHSt8mG+QkS0LGqJm+bNktXA
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Certificado Camara de Comercio Nov 2024.pdf
- Size
  
  38KB
- MD5
  
  0ed975de023fc9c9901647ee341a404e
- SHA1
  
  0eced6c445194ead4fbe3ad8ceb5b76fac993741
- SHA256
  
  2ca9b7b697c45011bf6e9bbe9c6c9db777526fe885af9d9fe64f2f3ad737f11e
- SHA512
  
  542cb574212d4af62e0aee989ba1da042fc7b760cd86e152c8160c5968726a2031c015e8879eff1acfe3d010628cc3e49830e474b9b389d9d09885b47b64b46c
- SSDEEP
  
  768:8tPnoeiT6T9BYAh7DdpPnUFeSmUVR09nQg2qNWBq0uO+nKl+y2f+u6G:GoegyBXh76mH9QgdNWUpO+n6wr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  FACUTURAS ISES-AIRE.7z
- Size
  
  13.9MB
- MD5
  
  ac67295359a4563318b504595e968496
- SHA1
  
  75b7356fc086282d10c1638695f4498e59d223f4
- SHA256
  
  174eae576961500f43d5da1b8495bcdd068d9089f453feef34a02ce70faea5d5
- SHA512
  
  eaf6d154ea3d82cea735d14e925e1fcb898a8d06e03c820f6584be4240618ff47da84ea05fa2c56f6b04b0295575de59c1d16716ffa9888c8be2918c6b0ae307
- SSDEEP
  
  393216:/junTRAt+AWHvWh7ANSQDmGhwygobvRsmO:6n1SWHvWh78SQp6yxv3O
Score

4^/10

discovery
behavioral5 behavioral6
- Target
  
  HES__1000021871.PDF
- Size
  
  1.5MB
- MD5
  
  0aa6adbe92cbc78130c023bc440e3549
- SHA1
  
  760da87b10a1ddf286a65cc576e74e33c6188218
- SHA256
  
  6d944311393ae1aa4f9d760e4d9f75ea6ce2c144da5f6d1c53f3d89d585f262d
- SHA512
  
  15e4b321572b342cf28965ee885ce4dfb9e13928311eb44fbc8c3cc86bd506fe328496e740054d1cc04fd545a9ee7ddaac86adf912faeafc934a947cbe8babdd
- SSDEEP
  
  24576:ICHjZCsa2TizE6jd3qOfRt/oliJop3H6HFlvwalMwijD295/2jpRUFPa7cS6ra:l4shB6R3qOf7gxaHX4aWwi329V7a
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  HES__1000021873.PDF
- Size
  
  1.5MB
- MD5
  
  aa25e9864a219d0a6b837f5f94d4beda
- SHA1
  
  274df4dc203ef40519b6bdd3848cacb93f020d06
- SHA256
  
  5fb986edd290336bc2ec465994b56da28d1f83fe62ef8a1745987a28f182a9b7
- SHA512
  
  4d2ed2bdc97bdc956b7a6864fec7c51f696dd1017d6531dab69f8dfdb4d81d8b1d449a9e296752d0cf1db7c51b48dbe1ec6b12744eb0a1b07b70ade0ec6ed351
- SSDEEP
  
  24576:ICHjZCsa2TizE6jd3qOfRt/oliJop3H6HFlvwalMwijD295/2jpRUFPa7cS6ra:l4shB6R3qOf7gxaHX4aWwi329V7a
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Relacion_servicios_prestados_por_municipio_air-e_FE-8853.xlsx
- Size
  
  104KB
- MD5
  
  e0e6ba58d45400c5315fc56f19610e15
- SHA1
  
  52459c07ad9e3f89e52851fc38cdf1a20d04aa9f
- SHA256
  
  74c5130b20bdc7310c937ae3b77e702cc74d0e7cb3a53f4c93e4bb9a3dd94a12
- SHA512
  
  257b218aa886f48e841767adb59c488e97ff164143eac0d50cbcee7fe40d8d272f2e565e7cf6f10a969e96c84b697a167d8dfa606d070a859acaa0adcf569940
- SSDEEP
  
  3072:iPHMACucROW+yJk6pPW4fmHo/8s8yfkH8Vhg:ivVCu2TRK6pPW4fmHon8ykZ
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  fv09004135880212400FE8853.pdf
- Size
  
  60KB
- MD5
  
  4557fe1fc4d656ac739d6521b7fa4d75
- SHA1
  
  770f68e10ff06428c3cc6205e83a57a93c9b6789
- SHA256
  
  4bb25beafc7efa460beaf216d2248d7a310be21d63669cf20074ba2ed3fd721c
- SHA512
  
  d4d27c1c169b49229c2db46dcec0d63f32eb2d9dd878c60a3615d4493d5331e0ac3890a72670089cb3da019b1c6b34804c93cc3024e161b480a38df92c694e05
- SSDEEP
  
  1536:nkkHlPFAhmzpgYCGeYHhIsHn8wT0d4EzNJ36:/PFAYzpgYCGeWOsH8q0dpNZ6
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  Recibo de pago abono ISES IVA BIMESTRE 4.pdf
- Size
  
  62KB
- MD5
  
  41b7bb82ac28746142bad3bdb72c7693
- SHA1
  
  9cfbdeba61595a0d0e8293f7efd983c334e2bf75
- SHA256
  
  9feee1577be280f0091c8c8df942b4018eff3b4d820957c520e12dd49b2c0012
- SHA512
  
  179359cbf221a0f7d874b5821ffa75528ec195433251aeb4a2975ca99de0979f2fa9488cd609ed7422fc1bcb18cc3f6bc618357ee144b1c4ed67cabf0ad9e3c6
- SSDEEP
  
  1536:Jq3VLq88VlhgujmvaGOHJttSKAgU6fgGFBNa8siF0jNwTFE5:M8VfgSm/OHJXBAg9gG7s8BKNIFs
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16