Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    76c895914283cc32f6cfbe15be64b225c2a8b349dce0f76673b062b91ca7087c.doc

  • Size

    153KB

  • Sample

    200128-deagdechgs

  • MD5

    2183db04580d943d21f530fefc1f87d0

  • SHA1

    8560fecc8a987ddd134930a5c80b79d1a3837fe4

  • SHA256

    76c895914283cc32f6cfbe15be64b225c2a8b349dce0f76673b062b91ca7087c

  • SHA512

    7986d04c5add6612bb3c5a24f0eed9667643670a4db6ed0900fbed5e0640bad7b9f70926e4613aa4f8906c5bc9b2cc570ad4ad62beac0f6f009bedb19df4cde6

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://covaihomes.com/cgi-bin/t3ln/
exe.dropper

http://saxseafood.com/wp-content/VHTlLciKX/
exe.dropper

https://zaamira.com/wp-admin/2sof7o/
exe.dropper

https://shopify-ed.apps.zeroek.com/dist/hxrf9/
exe.dropper

https://sophistproduction.com/wp-includes/Wijy9/

Targets

    • Target

      76c895914283cc32f6cfbe15be64b225c2a8b349dce0f76673b062b91ca7087c.doc

    • Size

      153KB

    • MD5

      2183db04580d943d21f530fefc1f87d0

    • SHA1

      8560fecc8a987ddd134930a5c80b79d1a3837fe4

    • SHA256

      76c895914283cc32f6cfbe15be64b225c2a8b349dce0f76673b062b91ca7087c

    • SHA512

      7986d04c5add6612bb3c5a24f0eed9667643670a4db6ed0900fbed5e0640bad7b9f70926e4613aa4f8906c5bc9b2cc570ad4ad62beac0f6f009bedb19df4cde6

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Enterprise v6

Tasks