Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    76468ab821839104c0bd183f93ae1fa3a56119d1cfd6caed98930182a89c5149.doc

  • Size

    153KB

  • Sample

    200128-jx2m1c13jj

  • MD5

    d6a8c9ed14869acef870a416692a433f

  • SHA1

    86672b8e5f0e9ca75f4c91e5b212849b2adce1c3

  • SHA256

    76468ab821839104c0bd183f93ae1fa3a56119d1cfd6caed98930182a89c5149

  • SHA512

    73ceee1dbd1239cd71d7e07f2d4dff1e6f890fb1f44c3fbcdaadcb0071a3d71d7c498439ec96d2224cfd9a1e3308bfbd2d0a6647aee05c393b8c9b166aaa0d37

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://covaihomes.com/cgi-bin/t3ln/
exe.dropper

http://saxseafood.com/wp-content/VHTlLciKX/
exe.dropper

https://zaamira.com/wp-admin/2sof7o/
exe.dropper

https://shopify-ed.apps.zeroek.com/dist/hxrf9/
exe.dropper

https://sophistproduction.com/wp-includes/Wijy9/

Targets

    • Target

      76468ab821839104c0bd183f93ae1fa3a56119d1cfd6caed98930182a89c5149.doc

    • Size

      153KB

    • MD5

      d6a8c9ed14869acef870a416692a433f

    • SHA1

      86672b8e5f0e9ca75f4c91e5b212849b2adce1c3

    • SHA256

      76468ab821839104c0bd183f93ae1fa3a56119d1cfd6caed98930182a89c5149

    • SHA512

      73ceee1dbd1239cd71d7e07f2d4dff1e6f890fb1f44c3fbcdaadcb0071a3d71d7c498439ec96d2224cfd9a1e3308bfbd2d0a6647aee05c393b8c9b166aaa0d37

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Enterprise v6

Tasks