24b4ab604c01ad537704980ce0e2dc8f97ef4f59e0453918eed6de272dc93ee0

Resubmissions

19/11/2024, 16:46

241119-vabhkaygrk 6

19/11/2024, 16:43

241119-t8gxkatjhj 6

Sharing

Copy URL

Twitter E-mail

General

Target

RV_ INGENIERIA Y SOLUCINONES ESPECIALIZADAS SAS (ISES S.A.S.) NI.eml
Size

19.9MB
Sample

241119-vabhkaygrk
MD5

1323ecada3d55456f4b646139538338f
SHA1

d35b93cae135c995fc3328dacf068acce428a076
SHA256

24b4ab604c01ad537704980ce0e2dc8f97ef4f59e0453918eed6de272dc93ee0
SHA512

57bdb5c55001bb21057000a91af5c791f4a945e16274470694e1aa9a6d2434fc228bcbe044003710cced6ab59feaead67cd9149d29d6892b9aff6b2676ecd836
SSDEEP

49152:nCmXboNIzY66EgdosSkFTkGiF8txDbG4DXpdBgEGdcGosEnbiAg3EDYzWEbK61AS:Z

Score

6^/10

Malware Config

Targets

- Target
  
  RV_ INGENIERIA Y SOLUCINONES ESPECIALIZADAS SAS (ISES S.A.S.) NI.eml
- Size
  
  19.9MB
- MD5
  
  1323ecada3d55456f4b646139538338f
- SHA1
  
  d35b93cae135c995fc3328dacf068acce428a076
- SHA256
  
  24b4ab604c01ad537704980ce0e2dc8f97ef4f59e0453918eed6de272dc93ee0
- SHA512
  
  57bdb5c55001bb21057000a91af5c791f4a945e16274470694e1aa9a6d2434fc228bcbe044003710cced6ab59feaead67cd9149d29d6892b9aff6b2676ecd836
- SSDEEP
  
  49152:nCmXboNIzY66EgdosSkFTkGiF8txDbG4DXpdBgEGdcGosEnbiAg3EDYzWEbK61AS:Z
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  Carta solicitud acuerdo de pago - ISES.pdf
- Size
  
  432KB
- MD5
  
  82409d40a7f55d632c56420b6237dafe
- SHA1
  
  209a58e044a3aaf9c9660e979f5a54b0995ff2c2
- SHA256
  
  824cb15c99b803bde8e16f411a3e03efb80e27d03dfeb000184f745ad4166504
- SHA512
  
  f28c9f53f6f3bd3e78e0803c6a5902a6e294872dacdaee64ec918030175a5ac5bc0a4369b4d4a8b74638d35f336b46b8ae4ee422b4a7e5b1bda65ffaa3d3bb3f
- SSDEEP
  
  12288:k0mOA9nr+Uv+UAROk8mrCFobP8kS0LGqmwziJum+12QNZqtX6Y4z:k0mOA9rHSt8mG+QkS0LGqJm+bNktXA
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Certificado Camara de Comercio Nov 2024.pdf
- Size
  
  38KB
- MD5
  
  0ed975de023fc9c9901647ee341a404e
- SHA1
  
  0eced6c445194ead4fbe3ad8ceb5b76fac993741
- SHA256
  
  2ca9b7b697c45011bf6e9bbe9c6c9db777526fe885af9d9fe64f2f3ad737f11e
- SHA512
  
  542cb574212d4af62e0aee989ba1da042fc7b760cd86e152c8160c5968726a2031c015e8879eff1acfe3d010628cc3e49830e474b9b389d9d09885b47b64b46c
- SSDEEP
  
  768:8tPnoeiT6T9BYAh7DdpPnUFeSmUVR09nQg2qNWBq0uO+nKl+y2f+u6G:GoegyBXh76mH9QgdNWUpO+n6wr
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  FACUTURAS ISES-AIRE.7z
- Size
  
  13.9MB
- MD5
  
  ac67295359a4563318b504595e968496
- SHA1
  
  75b7356fc086282d10c1638695f4498e59d223f4
- SHA256
  
  174eae576961500f43d5da1b8495bcdd068d9089f453feef34a02ce70faea5d5
- SHA512
  
  eaf6d154ea3d82cea735d14e925e1fcb898a8d06e03c820f6584be4240618ff47da84ea05fa2c56f6b04b0295575de59c1d16716ffa9888c8be2918c6b0ae307
- SSDEEP
  
  393216:/junTRAt+AWHvWh7ANSQDmGhwygobvRsmO:6n1SWHvWh78SQp6yxv3O
Score

1^/10
behavioral7 behavioral8
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8853.zip
- Size
  
  2.9MB
- MD5
  
  880aa470c20ad15fd401543546cf3ef2
- SHA1
  
  61ee373119f421a51f2abb0d91abd457122713aa
- SHA256
  
  5d595ed047ad67451b5821fbad215117d7665a1da83b77d5a0fe1e136d9f6a34
- SHA512
  
  56c414dc8f9840f6b7f53ac65498826d575964967ccb2001dabac0852cbe8f8e12789340a26b4b60390440073016e06edc1e4380269ab804da231cdf481be72d
- SSDEEP
  
  49152:GH2BL3zOt/uknshK24ka729f0I172BL3zOt/uknshK24ka729f0I1+l:5F3zOhfsB4V29f0kaF3zOhfsB4V29f0x
Score

4^/10

discovery
behavioral10 behavioral9
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8854.zip
- Size
  
  1.5MB
- MD5
  
  d203d341e74ecd161a3cd6b8e1b3fb78
- SHA1
  
  3d4290375ff6be1716ec06eae164d0cedc401b54
- SHA256
  
  52cfeb8de38f7e3b6149f577a422fccd2ac0dec45a5507c066805a16700bd7f4
- SHA512
  
  360eeb4b14f82f3a33ccdfb00927f82f190aaeebc949f96e7ca5224e213d5e617e7855227ec805e340844da3e19e59591811fde9aad658e286ea458dfe1fe73c
- SSDEEP
  
  49152:5LFkXU/G2BL3zOt/uknshK24ka729f0I1P:5pKwlF3zOhfsB4V29f0kP
Score

4^/10
behavioral11 behavioral12
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8855.zip
- Size
  
  1.5MB
- MD5
  
  a4a7d04f1e0303736b2d4b6d9198be5e
- SHA1
  
  94ddc54d450b1c6e751eaa91fac6cf24ca7401d4
- SHA256
  
  e33431d8d3ff77811cb17b4ccc9630da65fea647b3540364b0b01a16bc1f1da0
- SHA512
  
  7292fa3833ad8942f51d500e4a51df4c028822332e96e622956093f7704c78507e183bb73ef515bfa8f7921f648a1960de756694cbb9ccd268e45d4ef720c4a3
- SSDEEP
  
  24576:f68OujHCBzrz3ugOtVtvm1GjR5xhrdUTFLtg2fgkajP29H/cj9RksI1cPpRdp2mq:fD2BL3zOt/uknshK24ka729f0I1YdpA
Score

4^/10
behavioral13 behavioral14
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8856.zip
- Size
  
  1.5MB
- MD5
  
  8ea1d872f44393b0db2d47803cdcebdf
- SHA1
  
  bc89a5e75fe949d9395b729d05ec4c18849fd862
- SHA256
  
  324ddd24e667be4af65f8c2941687bc06fdc7a00201d1e8526953b81792678a4
- SHA512
  
  d1f81a84311f299b31dc9b3bc691e4a600fe02497fa7173af9e648f5e11cdaa276672fda67de4bf9ee7a2ce0b24b9c2a5192be9f931887808777c7c0609d670f
- SSDEEP
  
  24576:YL2UOujHCBzrz3ugOtVtvm1GjR5xhrdUTFLtg2fgkajP29H/cj9RksI1cPt4U:u2BL3zOt/uknshK24ka729f0I1W4U
Score

4^/10
behavioral15 behavioral16
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8914.zip
- Size
  
  1.4MB
- MD5
  
  be767bb40149e3f75c71dab3b0e299da
- SHA1
  
  c016761456b75713eaf003df8065a3c6f9f52ce1
- SHA256
  
  cf0854f7e4dcf185716d50ffe698c1b27fd19ee197b7784d8ecbc7590a288575
- SHA512
  
  74f9ffd9b4b0f4c7214fe54026561c8666e621143917a6ccbe2955f529d7b57036396436634788abf8bb48f9fd3d362c27d78a3b810357f6137968e216738e3b
- SSDEEP
  
  24576:kNTjOujHCBzrz3ugOtVtvm1GjR5xhrdUTFLtg2fgkajP29H/cj9RksI1cPyco:kL2BL3zOt/uknshK24ka729f0I1eo
Score

4^/10

discovery
behavioral17 behavioral18
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8915.zip
- Size
  
  1.4MB
- MD5
  
  7859065aa664632e227d610500b28ff7
- SHA1
  
  f3f9b4ab6c12e96767d9ed9c866ad5ebc09c3151
- SHA256
  
  266f328b2369f82d191c926459552cd605346972007d01dc5130a38dba82e795
- SHA512
  
  5cf3d1bf9eb7784467949ffcda1bc272bb1d7419129fbe3e8b1fc3337c9a8660506cdc3c3aee9aec307129083e3fe9463be451e891a93ff20ed9790609729ebb
- SSDEEP
  
  24576:29OOujHCBzrz3ugOtVtvm1GjR5xhrdUTFLtg2fgkajP29H/cj9RksI1cPcOk:/2BL3zOt/uknshK24ka729f0I1uk
Score

4^/10

discovery
behavioral19 behavioral20
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE8916.zip
- Size
  
  1.5MB
- MD5
  
  d76b6256db1030979b8f89a33ca22949
- SHA1
  
  60769ec00e59b9fa947e64a56cf205e8f639938b
- SHA256
  
  c6270da5eeeb9d3608b58df818f501245951480113c1e5093c840087abc23f89
- SHA512
  
  dab67c7068170543abe3e0d67ead2cb1032dc5f24441104bb8ee681d5f7cc6891489bf9be5db3c2cfc2f918314f4a789d7cc041df2166c7db6564e4a910ed946
- SSDEEP
  
  49152:TxQsx3jPOTb2jkEnqD/VdcWA4M32FnOxmu+H8:Txhx3jPOPIqbVNAj2FnOJ+H8
Score

1^/10
behavioral21 behavioral22
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE9111.zip
- Size
  
  1.5MB
- MD5
  
  0dab3c6fbf6f3ec3fbe2c12e1baa3f08
- SHA1
  
  3a9ae0f3a482115d29c2e87955f73bfce191f6a0
- SHA256
  
  b74d769ee896fb48a90ca9353961c1697c3d743f78d17912732bc9137d64b82e
- SHA512
  
  9a2c950a9da903c8884db7e800aafe7b7cd84b09007c5d86ca88351c13a02d474271e4d80e5207aabe01b2544cfa7570923d25024ce1e806a38f48a562108221
- SSDEEP
  
  49152:8RCiQj3O2OPtml8yk9K0EAcF2HVNN8ttMA:8RCLj3O2OF+kxE52HVNN8X
Score

1^/10
behavioral23 behavioral24
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE9230.zip
- Size
  
  1.5MB
- MD5
  
  7fe410e73aa06c1f0a1302c4db92a357
- SHA1
  
  17b4cc8bf7282a30768493894ec8368cff956fd4
- SHA256
  
  d93dad53026a2dd37310377661a189ac5326a0fe163b9a88559fbc93c25031f9
- SHA512
  
  42894e88af1e064c87409d6dd696b08cc6b71e0260a480ff0da9cf115554e569fcccb0e7191dddc5abf67e92f296c39976c698aea168baa331e718289abd13f5
- SSDEEP
  
  49152:u4ZqWD311On/SeHBkkAD/lBeiWa2h2ndymUdeGLMh:u4ZVD311O/VHBAblbWZ2ndEcGLMh
Score

1^/10
behavioral25 behavioral26
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE9235.zip
- Size
  
  673KB
- MD5
  
  d8b8b94e7f5bce8a0757b7b7eb2048a4
- SHA1
  
  cdf2a35bbdc8ae8adeb07de468386c874d631fe5
- SHA256
  
  5cd917ee15975b9fa4cb94d3c7ebe647397a3fbbb88c4ae41358df1c977beb77
- SHA512
  
  f014f2259a7b724bbf0189c120d7a54d721fd3f8b8d04979683eeee26f62b7cc41ca14b4e4b56734ba938ecea1835c65f13112696a8dfc4c1b785f822a27ab40
- SSDEEP
  
  12288:WMYF/dQpIWENR26tK8T03BKkh9k/33pRp2gWxOr2KW8E1sOlEqlBk8k6:mwKNR26kL3Ekh9K35RkxOr2KQDlBk8X
Score

1^/10
behavioral27 behavioral28
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE9236.zip
- Size
  
  671KB
- MD5
  
  caa9489c9cee745baf5cddb1d049992b
- SHA1
  
  aee687c264490493cacc459f41cdd27808b2931a
- SHA256
  
  c60df118ccf4a6373b0cd827abab971c167b74cdc24ca6e8a3ace0b4012b87a2
- SHA512
  
  43010c9c6c4d7420c9b6b6ad82f91db3555ec4bf1ae51f74aecfd44ed3ffbc812ee7f71843bc0b016c0d07cf55ebd17f38ed62a49ec3aa4e7cae92c90d1754f6
- SSDEEP
  
  12288:DOSl2FPuBbwNl+w4ajV4mhwm0ayTXOvn08HACoHR1uw6IB9avO09O:DSFPu10Iw4ajV5W9TYn08HSHDuwX9aZI
Score

1^/10
behavioral29 behavioral30
- Target
  
  FACUTURAS ISES-AIRE/CON ACEPTACION TACITA/FE9237.zip
- Size
  
  674KB
- MD5
  
  62417895aac000b5d624b28f8fd9f5db
- SHA1
  
  f4cd8e254cf27c7d2e3571dbee26f38e07780caa
- SHA256
  
  178195c962a6d7f698e480e2a4f8fb8099cdf1292a4904da455504c8fd4824e1
- SHA512
  
  e17b7c833de0d9430c3c4494cc69357dbca52637af2f27a1966bf21ec2a850945e2125b5df350fe585aa89c36359ca42dfa5d2dc97c49878e0ada2a1dcb726ca
- SSDEEP
  
  12288:7+M6X182RDcXXAP8soc/IQnl/njTqGmryYJzn2p8e5d7gkS/s:7MOGDcXXA9oc/Rl/n/qjryYJzY7gA
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32