Overview

overview

10

Static

static

official p...20.doc

windows7_x64

10

official p...20.doc

windows10_x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    official paper,07.20.doc

  • Size

    114KB

  • Sample

    200715-lc2q296bwn

  • MD5

    c07adf157fbe6d718a1b3e8fc3487805

  • SHA1

    76de5018df3376e99140479fa9b5962bb00b73a0

  • SHA256

    b4810d726b778bc2f48443157985fdc981e1065454c3dfecec758a0ba39c8789

  • SHA512

    1c7d63d2d1328ed56a4022aa083b6bd2ad3076272002d87c69963ec9070a5932764ba9f89d3c7c0f4f64f69ea9fbd3caa701a4ddf2380d1f153ed79236bd6277

Score
10/10
discovery

Malware Config

Targets

    • Target

      official paper,07.20.doc

    • Size

      114KB

    • MD5

      c07adf157fbe6d718a1b3e8fc3487805

    • SHA1

      76de5018df3376e99140479fa9b5962bb00b73a0

    • SHA256

      b4810d726b778bc2f48443157985fdc981e1065454c3dfecec758a0ba39c8789

    • SHA512

      1c7d63d2d1328ed56a4022aa083b6bd2ad3076272002d87c69963ec9070a5932764ba9f89d3c7c0f4f64f69ea9fbd3caa701a4ddf2380d1f153ed79236bd6277

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks