Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6d0ba7cec42eece8391318a57b9387830a216cacef72d15ebb3ebea0935ee32.doc

  • Size

    153KB

  • Sample

    200128-sa64y48k9x

  • MD5

    9c289e7e33b33339931d44cdd0053fbf

  • SHA1

    6cca2f0abe5d7acff6296083246f9d017c20064b

  • SHA256

    c6d0ba7cec42eece8391318a57b9387830a216cacef72d15ebb3ebea0935ee32

  • SHA512

    95d14fee6c9d7aa23df3840aec9e365533ac4069c7032291df64c1bf99182c5792c6d17e272e1d93b134a42c2729732199cdab55696a7cba05267f44ad9bc143

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://fietsenmetkinderen.info/App_Data/ASHFouI/
exe.dropper

https://rokonworld.xyz/cgi-bin/bf99ypv-nka70qs-62/
exe.dropper

http://www.meubelontwerpstudioheyne.nl/languages/ndZNarqnj/
exe.dropper

http://bursary.engsoc.queensu.ca/wp-admin/48ech-ddpjkzp-29821620/
exe.dropper

http://lapmangfpt.haiphong.vn/wp-admin/k50i2cm5qi-9wnfau-7879373385/

Targets

    • Target

      c6d0ba7cec42eece8391318a57b9387830a216cacef72d15ebb3ebea0935ee32.doc

    • Size

      153KB

    • MD5

      9c289e7e33b33339931d44cdd0053fbf

    • SHA1

      6cca2f0abe5d7acff6296083246f9d017c20064b

    • SHA256

      c6d0ba7cec42eece8391318a57b9387830a216cacef72d15ebb3ebea0935ee32

    • SHA512

      95d14fee6c9d7aa23df3840aec9e365533ac4069c7032291df64c1bf99182c5792c6d17e272e1d93b134a42c2729732199cdab55696a7cba05267f44ad9bc143

    Score
    10/10

    • Process spawned unexpected child process

    • Executes dropped EXE

    task1

MITRE ATT&CK Enterprise v6

Tasks