General
-
Target
commerce _07.20.doc
-
Size
114KB
-
Sample
200715-je1hfhjhms
-
MD5
a4cdab76891c04a803cfdf14c1078d8d
-
SHA1
687b0c5157d3da0ed471557cd387abd1a80d3124
-
SHA256
f68bb42ce6d65902275468d5589521805e76a06b724824eb72c6bc1754359d9e
-
SHA512
1d660a4aa4e97b5998378a680ebcd382f44671d75986e781ab74e999030f7412184501c8cb40b56d76e0d945f81b118c67d1a0662d56bbb84cf75975c1b9d28c
Static task
static1
Behavioral task
behavioral1
Sample
commerce _07.20.doc
Resource
win7v200430
Behavioral task
behavioral2
Sample
commerce _07.20.doc
Resource
win10
Malware Config
Targets
-
-
Target
commerce _07.20.doc
-
Size
114KB
-
MD5
a4cdab76891c04a803cfdf14c1078d8d
-
SHA1
687b0c5157d3da0ed471557cd387abd1a80d3124
-
SHA256
f68bb42ce6d65902275468d5589521805e76a06b724824eb72c6bc1754359d9e
-
SHA512
1d660a4aa4e97b5998378a680ebcd382f44671d75986e781ab74e999030f7412184501c8cb40b56d76e0d945f81b118c67d1a0662d56bbb84cf75975c1b9d28c
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-