Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15d9234eeea6f729bd2a36b17e5cc5de58baa05a3ce2258675dd2620e4c28fb1.doc

  • Size

    265KB

  • Sample

    200206-gek8yanc5a

  • MD5

    9d079c9a20d7e7398017ee8d856969b6

  • SHA1

    eb14d5dc0a094d7ad51732d5cf99de6e85ee3e0e

  • SHA256

    15d9234eeea6f729bd2a36b17e5cc5de58baa05a3ce2258675dd2620e4c28fb1

  • SHA512

    19d59e02a123c9ea952f5ee859b2c42f364d04b37d255c29d860921abe89272303e31b15568ee3666d8b350743752334b2d6f8bb3e949741b97f422b25933e5f

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://supcargo.com/Login/K/
exe.dropper

http://sunucuo.com/wp-admin/0V0e/
exe.dropper

http://sweetestshop.ca/wp/3ca5oq/
exe.dropper

http://subhedarmarketing.com/2/7gtTEM8/
exe.dropper

http://takharandshankertour.com/wp-includes/IXR/2/

Targets

    • Target

      15d9234eeea6f729bd2a36b17e5cc5de58baa05a3ce2258675dd2620e4c28fb1.doc

    • Size

      265KB

    • MD5

      9d079c9a20d7e7398017ee8d856969b6

    • SHA1

      eb14d5dc0a094d7ad51732d5cf99de6e85ee3e0e

    • SHA256

      15d9234eeea6f729bd2a36b17e5cc5de58baa05a3ce2258675dd2620e4c28fb1

    • SHA512

      19d59e02a123c9ea952f5ee859b2c42f364d04b37d255c29d860921abe89272303e31b15568ee3666d8b350743752334b2d6f8bb3e949741b97f422b25933e5f

    Score
    10/10

    • Process spawned unexpected child process

    • Drops file in System32 directory

    task1

MITRE ATT&CK Matrix

Tasks