Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae1cdc48a32c38051b8709d02ac807627572fa24244b491c0d3c9fdb7e73da8a.doc

  • Size

    108KB

  • Sample

    200131-t8heph685a

  • MD5

    98aa968f09c79619b38372b82674a665

  • SHA1

    b3dcbf072964bcaef4762be24a3873a98b6cb716

  • SHA256

    ae1cdc48a32c38051b8709d02ac807627572fa24244b491c0d3c9fdb7e73da8a

  • SHA512

    98f527cf6c41fa262ae66b3a31632fec8709a52935e0db5d2f97b7091ce182cff0c6e8cb1bf4a1e8d94474d3b82a7388c55b21f7a70595cbdb5eb8db54f2d9e6

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://anivfx.kr/wp-snapshots/vsGnmTxC/
exe.dropper

http://unoparjab.com.br/wp-content/themes/twentysixteen/shqjYS/
exe.dropper

http://5designradioa.com/cgi-bin/hel3pgfj0u-utw9ye5h-00601/
exe.dropper

http://agencia619.online/cli/nntYnR/
exe.dropper

http://africa2h.org/wp-content/brxhQk/

Targets

    • Target

      ae1cdc48a32c38051b8709d02ac807627572fa24244b491c0d3c9fdb7e73da8a.doc

    • Size

      108KB

    • MD5

      98aa968f09c79619b38372b82674a665

    • SHA1

      b3dcbf072964bcaef4762be24a3873a98b6cb716

    • SHA256

      ae1cdc48a32c38051b8709d02ac807627572fa24244b491c0d3c9fdb7e73da8a

    • SHA512

      98f527cf6c41fa262ae66b3a31632fec8709a52935e0db5d2f97b7091ce182cff0c6e8cb1bf4a1e8d94474d3b82a7388c55b21f7a70595cbdb5eb8db54f2d9e6

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks