General
-
Target
3257efa9ab0130ba1bf8e78321dd5d168064911ad6c0e22932bc4914b9a6a994.doc
-
Size
127KB
-
Sample
200131-fqjm4ktv32
-
MD5
37cdde5e138d5691532cc3d63620807f
-
SHA1
5a5b1de56d87dea47558effcc6d25297d71b321c
-
SHA256
3257efa9ab0130ba1bf8e78321dd5d168064911ad6c0e22932bc4914b9a6a994
-
SHA512
8ba5a6e1ee4e4976717780715698d5e35909993fd96bddd3dc3fe9596302ed09a358875c9fdcb9a9c333091db7bd89f6c6af86bea69c851ca5c4adb9a3e7e368
Task
task1
Sample
3257efa9ab0130ba1bf8e78321dd5d168064911ad6c0e22932bc4914b9a6a994.doc
Resource
win7v191014
Malware Config
Extracted
http://muabanmaylaser.com/wp-admin/879/
http://www.codetisan.com/wp-content/fO4yKcL/
http://bettyasha.com/phhb/nrs81t/
http://payer.orientsportshouse.com/rvso/rcdbl/
http://support.deltainfocom.com/gjqs/9pz/
Targets
-
-
Target
3257efa9ab0130ba1bf8e78321dd5d168064911ad6c0e22932bc4914b9a6a994.doc
-
Size
127KB
-
MD5
37cdde5e138d5691532cc3d63620807f
-
SHA1
5a5b1de56d87dea47558effcc6d25297d71b321c
-
SHA256
3257efa9ab0130ba1bf8e78321dd5d168064911ad6c0e22932bc4914b9a6a994
-
SHA512
8ba5a6e1ee4e4976717780715698d5e35909993fd96bddd3dc3fe9596302ed09a358875c9fdcb9a9c333091db7bd89f6c6af86bea69c851ca5c4adb9a3e7e368
Score10/10-
Process spawned unexpected child process
-
Drops file in System32 directory
-