Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    960bdc4060c6f30ced59109becb52dd95034a892a45fa3e7b38eb77aa6110b87.doc

  • Size

    152KB

  • Sample

    200127-x4vgr8q64j

  • MD5

    9ebfdc1b2505ed0dfb5ace0085f10162

  • SHA1

    e9d981b9c604283a7e176686bc6b94c103d7947f

  • SHA256

    960bdc4060c6f30ced59109becb52dd95034a892a45fa3e7b38eb77aa6110b87

  • SHA512

    94150e29e34da7569d5726c97459b5ddbcba66b78effa15529591992577db1332053bae78eb4f949ce52687ab1b3a895a835070fb1e15edacd3339eb9f468439

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://yochina.apps.zeroek.com/assets/GQK9Gly/
exe.dropper

http://www.bandarwinsbobet.com/wp-admin/7bw/
exe.dropper

http://test.pakspaservices.com/wp-content/Yi1j6O7/
exe.dropper

http://portal.meucompromisso.com/wp-admin/kQJ/
exe.dropper

https://wondersofgeorgia.com/wp-admin/jv7hvg/

Targets

    • Target

      960bdc4060c6f30ced59109becb52dd95034a892a45fa3e7b38eb77aa6110b87.doc

    • Size

      152KB

    • MD5

      9ebfdc1b2505ed0dfb5ace0085f10162

    • SHA1

      e9d981b9c604283a7e176686bc6b94c103d7947f

    • SHA256

      960bdc4060c6f30ced59109becb52dd95034a892a45fa3e7b38eb77aa6110b87

    • SHA512

      94150e29e34da7569d5726c97459b5ddbcba66b78effa15529591992577db1332053bae78eb4f949ce52687ab1b3a895a835070fb1e15edacd3339eb9f468439

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Enterprise v6

Tasks