Analysis

  • max time kernel
    7s
  • resource
    win7

General

  • Target

    Docs_caa116070d1f2f48f3a9964e695226cc.1

  • Sample

    190918-f9bpbdw132

  • SHA256

    9fe890f4a1393ef301e24b02ab3c173f230ad7a982808ce6daf130c861422208

Score
N/A

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener
  • Suspicious use of SetWindowsHookEx
  • Drops Office document 2 IoCs

Processes

  • C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
    "C:\Program Files\Microsoft Office\Office14\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\Docs_caa116070d1f2f48f3a9964e695226cc.1.docx"
    1⤵
    • Drops Office document
    PID:840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads