Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b8c789a94b384b604ea55e6faaa6df482fc7f7a17086075ee9c027f1693540c.doc

  • Size

    153KB

  • Sample

    200127-jbxvcn6mvx

  • MD5

    ce345d9ee3a1749129e3a6abe7767c80

  • SHA1

    7b386410ff8e408528ca7b13e347c03244cb4b5b

  • SHA256

    5b8c789a94b384b604ea55e6faaa6df482fc7f7a17086075ee9c027f1693540c

  • SHA512

    a5e79660be5eecfb10350c7729cdfd09b4f9d98d6645c294f7a69911d32c97674ec96c44c196b1847bf43d18dd058a9da716d671488e1787473b1fa53cf5447f

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://camnangtrithuc.com/wp-admin/rysO51/
exe.dropper

http://srgasia.com.my/wp-content/vmcG8715/
exe.dropper

https://www.amedspor.com.tr/trsss/2aCO1Gkwg/
exe.dropper

https://uklid.ir/cgi-bin/8v/
exe.dropper

https://bffanmiefan.tk/cgi-bin/wYvv84846/

Targets

    • Target

      5b8c789a94b384b604ea55e6faaa6df482fc7f7a17086075ee9c027f1693540c.doc

    • Size

      153KB

    • MD5

      ce345d9ee3a1749129e3a6abe7767c80

    • SHA1

      7b386410ff8e408528ca7b13e347c03244cb4b5b

    • SHA256

      5b8c789a94b384b604ea55e6faaa6df482fc7f7a17086075ee9c027f1693540c

    • SHA512

      a5e79660be5eecfb10350c7729cdfd09b4f9d98d6645c294f7a69911d32c97674ec96c44c196b1847bf43d18dd058a9da716d671488e1787473b1fa53cf5447f

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks