9fe890f4a1393ef301e24b02ab3c173f230ad7a982808ce6daf130c861422208 | Triage

Sharing

General

Target

Docs_caa116070d1f2f48f3a9964e695226cc.4
Size

141KB
Sample

190918-4vef8me5se
MD5

caa116070d1f2f48f3a9964e695226cc
SHA1

d26dbcbd82c2497d8963d10865d1f876738d363c
SHA256

9fe890f4a1393ef301e24b02ab3c173f230ad7a982808ce6daf130c861422208
SHA512

ba116f1e3dea5e1985a04a53f42bdfbd75f8cf20a00db00c0f015cb84a690473b5eeaea6fe6e0e0a8aba9905ea347d5a3b2ccafd7c02db2a08e703d01486ecf0

Score

5^/10

Malware Config

Targets

- Target
  
  Docs_caa116070d1f2f48f3a9964e695226cc.4
- Size
  
  141KB
- MD5
  
  caa116070d1f2f48f3a9964e695226cc
- SHA1
  
  d26dbcbd82c2497d8963d10865d1f876738d363c
- SHA256
  
  9fe890f4a1393ef301e24b02ab3c173f230ad7a982808ce6daf130c861422208
- SHA512
  
  ba116f1e3dea5e1985a04a53f42bdfbd75f8cf20a00db00c0f015cb84a690473b5eeaea6fe6e0e0a8aba9905ea347d5a3b2ccafd7c02db2a08e703d01486ecf0
Score

5^/10
- Checks processor information in registry (likely anti-VM)
- Checks system information in the registry (likely anti-VM)
- Drops Office document
  dropper exploiter maldoc
- Enumerates system info in registry
task1 task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

task1

task2