Overview

overview

10

Static

static

files.07.20.doc

windows7_x64

10

files.07.20.doc

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    files.07.20.doc

  • Size

    113KB

  • Sample

    200715-92ed9cxfs6

  • MD5

    92a40c2f9e0bf1e05363dda2f4e69d02

  • SHA1

    7237b18aef7d35c08ebc46be5399f35d2f745ab5

  • SHA256

    b7f2dddd27a7118f6f6cc3923f2af1f83ca5b8ea722ea05f6b27845469899c67

  • SHA512

    f9146ddc08cf85c510bda54c8996b8f3d74ab7b92ade0b5d160094b561eb4b2a93e149aa336bdfb2bc10a814583e466e82d2ae253489fe21c5bee7e960b9e353

Score
10/10
discovery

Malware Config

Targets

    • Target

      files.07.20.doc

    • Size

      113KB

    • MD5

      92a40c2f9e0bf1e05363dda2f4e69d02

    • SHA1

      7237b18aef7d35c08ebc46be5399f35d2f745ab5

    • SHA256

      b7f2dddd27a7118f6f6cc3923f2af1f83ca5b8ea722ea05f6b27845469899c67

    • SHA512

      f9146ddc08cf85c510bda54c8996b8f3d74ab7b92ade0b5d160094b561eb4b2a93e149aa336bdfb2bc10a814583e466e82d2ae253489fe21c5bee7e960b9e353

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks