Overview

overview

10

task1

 

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    da55d54edd3021ebaf41530e1ec8dd18fb5541bb09c3cc9d10c88e9da0351409.doc

  • Size

    266KB

  • Sample

    200207-at7kcss156

  • MD5

    63d1fe91be7475f7d7b16d9c0f4d72e9

  • SHA1

    7ca71caca4479e3ef2127350292d609ccbb7f0d9

  • SHA256

    da55d54edd3021ebaf41530e1ec8dd18fb5541bb09c3cc9d10c88e9da0351409

  • SHA512

    5d30362259d82957e16c55c64eadd1dafe614457d22c4c0d9c3232481c02d6b3c818b3a8503d12e72ea200f991b2e8be0e549b006cd6b8c4eeafc7a29b441d19

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://movin.cloud/backend_01/jkc4i-wnc01wbd0-43/
exe.dropper

https://ribrart.com/wordpress/TXfMotAUY/
exe.dropper

http://www.pureborn.com/modules/QLBlEB/
exe.dropper

http://phuongphamngulao.gov.vn/wp-content/VNWiFup/
exe.dropper

https://wwwzarawazircom.000webhostapp.com/wp-admin/39h9z-rc0w9qe8yg-52816598/

Targets

    • Target

      da55d54edd3021ebaf41530e1ec8dd18fb5541bb09c3cc9d10c88e9da0351409.doc

    • Size

      266KB

    • MD5

      63d1fe91be7475f7d7b16d9c0f4d72e9

    • SHA1

      7ca71caca4479e3ef2127350292d609ccbb7f0d9

    • SHA256

      da55d54edd3021ebaf41530e1ec8dd18fb5541bb09c3cc9d10c88e9da0351409

    • SHA512

      5d30362259d82957e16c55c64eadd1dafe614457d22c4c0d9c3232481c02d6b3c818b3a8503d12e72ea200f991b2e8be0e549b006cd6b8c4eeafc7a29b441d19

    Score
    10/10

    • Process spawned unexpected child process

    • Drops file in System32 directory

    task1

MITRE ATT&CK Matrix

Tasks