7e7263b7b42454388d2c7fe248ee2f214182d600ceac8314f640b97b9558340a | Triage

Sharing

General

Target

CORREO RESPUESTA SOLICITUD DE INFORMACION.-ACTA SEGUNDA VISITA 2.eml
Size

29.0MB
Sample

250328-xdarjszvcx
MD5

92b2fa9b3d2ac576890968af9b2c6804
SHA1

62f4c1792b6e474974310318c03be8521353860a
SHA256

7e7263b7b42454388d2c7fe248ee2f214182d600ceac8314f640b97b9558340a
SHA512

cea547ce575312dc74d36032feb5b7b9cb7119052a3de43fb8c7443dd410698a357a5616fe85a9167072c7cd7110beae0026446ad564a6274723ef05bf3c00db
SSDEEP

49152:XG0n/xs80E3nGcHQIkZ4rD4I4Qrg6qRLGPzXa4cYTf78XCU731vEsvKGTnnUPoMk:y

Score

6^/10

discovery evasion pdf

Malware Config

Targets

- Target
  
  CORREO RESPUESTA SOLICITUD DE INFORMACION.-ACTA SEGUNDA VISITA 2.eml
- Size
  
  29.0MB
- MD5
  
  92b2fa9b3d2ac576890968af9b2c6804
- SHA1
  
  62f4c1792b6e474974310318c03be8521353860a
- SHA256
  
  7e7263b7b42454388d2c7fe248ee2f214182d600ceac8314f640b97b9558340a
- SHA512
  
  cea547ce575312dc74d36032feb5b7b9cb7119052a3de43fb8c7443dd410698a357a5616fe85a9167072c7cd7110beae0026446ad564a6274723ef05bf3c00db
- SSDEEP
  
  49152:XG0n/xs80E3nGcHQIkZ4rD4I4Qrg6qRLGPzXa4cYTf78XCU731vEsvKGTnnUPoMk:y
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  NC-CFPL 4700 MERCADERIA FUNZA.pdf
- Size
  
  106KB
- MD5
  
  2ec6cef158a34fac5bf9f19dbaac0a5b
- SHA1
  
  33f98b6fe8bb6103563ae1bdc4acad041e5e29fd
- SHA256
  
  6fd8b8835fedbcb877a72ec803b5d218a5ff03a676cb827294870516df6d3084
- SHA512
  
  b333d1e3eb0f78afeaff57ea916d5816576a69ed6dfa8141b63a1872c045ee9ea65194a5608bd7a4a7f3adf68ea740759ba6c9cdff20d7d34184a2c61ed90335
- SSDEEP
  
  3072:bI7Nxbhp4NFHjdrpoVCfrzcvbkYjJoLx+:bKxPYxRpbz2tJWc
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  NC-CFPL 4711 MERCADERIA TOCANCIPA.pdf
- Size
  
  107KB
- MD5
  
  b3bae88a757411502860d6725afbda78
- SHA1
  
  aef649c0c08eb1be2f0859b14dc6b396f41786de
- SHA256
  
  d1d3bcf05fc93a5a52001ca99d098ed5c8254e968292b99b75cdcc960ba7b0d6
- SHA512
  
  320556a91f295d3fb0d597ea2573f1ec4b52933de7daf21480e2023f7b27cef459f3d11b19d9e27e950a2daf94477093596b061d943fcfff476304ba5719cefa
- SSDEEP
  
  1536:S8klJh1vlxT3hpl2CPHjoKN7JvjhE2O90biK++DNu6UoBY6jdAJ6a5A9KLxa2:STD7Nxbhp4Ej7RjhEh0nbxOmjdAmoLxV
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  NC-CFPL 4712 MERCADERIA FUNZA.pdf
- Size
  
  106KB
- MD5
  
  8951da95466a06f86b3562cf13a93f3c
- SHA1
  
  456510ae53d2b9ca5357792af1c0d2c70efe191e
- SHA256
  
  4328ecb1324084240c01d2de4d03af4c518a8d16f847de2b545713c72c0749a3
- SHA512
  
  317fd8b565a20e75a0bef511bdbc6535e57449c0e97fb602348b424d37fbba42de8679e9a1e69123eeb753d2d13070f19d2deab9dc527f256c34811f35ead288
- SSDEEP
  
  1536:U7ZyMh1vlxT3hpl2hbWbv1TBLK06fxZRhc/t1Txuy6Scxj1osEUNavspcK9KLxjZ:5M7Nxbhp4pWbvHEPc/34HypUBcKoLxd
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  NC-CFPL 4733 MERCADERIA IBAGUE.pdf
- Size
  
  107KB
- MD5
  
  314e601cfb7a639d4bff02435d3effa5
- SHA1
  
  0661880c056446975b167dbc9c8eec08b848c53f
- SHA256
  
  5b9c18620d47e1590162952d857c72e9ebff85df070ce36733fef718abf6a3af
- SHA512
  
  7c9e546edc95b451c1f23b047ad447cd2034c505b72cdb2de70d82fae4b983f0ca1a66b58ae2a7d41c1e9fcce4342c0d862e09c737b4402be71dc64f850e77a3
- SSDEEP
  
  3072:iLI7Nxbhp4g6+BWXAQMLax2X6SrFZJThLtDIdoLx5:nxPu+KS01aRTp+Wj
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  NC-CFPL 4734 MERCADERIA IBAGUE.pdf
- Size
  
  113KB
- MD5
  
  179fb6d689a7aecd006ec547185e69a9
- SHA1
  
  6cabbab38dc3eabbb31f8c7bd1e30fe61bb1277f
- SHA256
  
  665aeebd1eba6569429589a7ea77c52d63fa8a9ae77eff18feab0c5db85a74f1
- SHA512
  
  0b1a554efecc1caab0aa74155d0156c36146d9e026c0b2781d3a5a36b4ef59b35629be514adb4a092eca8dabf205241af7b2f71b460b34ecc17a8dbe10e4568b
- SSDEEP
  
  3072:gVUc+mp41Go2fRm1QXpMigX6SMFoM3LhTgsPoLxqO:eUhSiGo2rJXEG/WsO
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  NC-CFPL 4735 MERCADERIA IBAGUE.pdf
- Size
  
  107KB
- MD5
  
  50f198003a0ba37e71ef1d61b074cb08
- SHA1
  
  990e7f7f34e5ecb48b4b855e4ad289c3667da6f5
- SHA256
  
  fb4fd96beef64df718dec35889420fbe995bcd096b580490af65e8795540f8cf
- SHA512
  
  13f84e76995ce7d924d546d2aa924eaee4464a710cef722cb0462083570879577b16c4590aee028a6a9ee62fc3fa49ca0e63c35d19a683db30dc82d213939f60
- SSDEEP
  
  3072:gF7Nxbhp46pwG7BnhX6SrFZJThLtDImoLxL:cxP/pwG7B8aRTp1WR
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  NC-CFPL 4736 MERCADERIA IBAGUE.pdf
- Size
  
  106KB
- MD5
  
  36986476168119fed59f8a1ca0cfd2e0
- SHA1
  
  005ec1ecdc3679e8c38d855e83e584c3e76421ee
- SHA256
  
  b686f25d64968480ca945cf2b2c291bf1fc3ebfb49b2bdcb2f9e69cdc975f944
- SHA512
  
  08367190a22c289568655cb712ae7156703d4e499b965cf1314bb8ed27669554c19eeb8b146dc61d188adf51fd5a2f9c7a7ace0ea08cff36d9dcd5297331bd8c
- SSDEEP
  
  3072:pJ7Nxbhp4/BE4JZAuK0KA6FZJThLtDImoLx6:pHxPay4J9K1VRTp1WE
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  NC-CFPL 4738 MERCADERIA IBAGUE.pdf
- Size
  
  107KB
- MD5
  
  81cd9ecde959fdec7cf50aa6b5e447b7
- SHA1
  
  bb68b274271591de3e6bb38cf8e4f63a8a158c8d
- SHA256
  
  5d77b4699b4759af11f3421735f696f4a111c5d96a1a36698c2a0459514f25a1
- SHA512
  
  97541029c954f68e5ea39ff4fc4334c7b7a18cd186ee15ba173c7919f3a50255699b279f49a0f20f54af94cdfb2b0ccac3702abb4d34c7fe4826eb01f1d8d39a
- SSDEEP
  
  1536:gxN4nh1vlxT3hpl2fUWMzLgw5y01w1TsG8AtUqVotfXogXcbNmR9KLx88:y4n7Nxbhp4fEz8w5oqLB4gqNSoLxR
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  NC-CFPL 4742 MERCADERIA BUCARAMANGA.pdf
- Size
  
  106KB
- MD5
  
  e6b8148ee39b9756410eb34774aa5feb
- SHA1
  
  ea85da1da0b304d1a8d3d915dd017e2735eb8589
- SHA256
  
  2b32f283619536cf305bf2eac3fddd68c180358177f3d81d90fd91b43490aa5d
- SHA512
  
  7ba0d5ef690f7dba55e7162be4a4a1c2655b4054b68bb5987aef3f773cb8dae610f636ea17e50469cf25bbccb3bfcfa725e59616a5434f9cac09189f3954eb3c
- SSDEEP
  
  1536:JOh1vlxT3hpl2kkBMlgAVLkdfJFSKsbZ1rzVnPUkK0Vwkuy2WQG18YF9KLx03:JO7Nxbhp4jBMlgemS3bBPhSbWFRFoLxu
Score

3^/10

discovery
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20