Overview

overview

10

Static

static

facts_07.14.20.doc

windows7_x64

10

facts_07.14.20.doc

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    facts_07.14.20.doc

  • Size

    114KB

  • Sample

    200715-xh58ff2hge

  • MD5

    7fcf9d942462a56462dd4d8ee8ffd51f

  • SHA1

    1017ade79db67892bc2eabe40c7e497f9381aa65

  • SHA256

    c91a48ee32bf0d27b05dfc3703a4ecc96941485b23055e023d0dcffccebdb802

  • SHA512

    2e0ce66577950db783318aec139246f931a392630f4e67154e371dba26ad4281181ed32dd0cf8505be2a3295294e5ff850d26ad31530b4cf3db41a9c396b44ea

Score
10/10
discovery

Malware Config

Targets

    • Target

      facts_07.14.20.doc

    • Size

      114KB

    • MD5

      7fcf9d942462a56462dd4d8ee8ffd51f

    • SHA1

      1017ade79db67892bc2eabe40c7e497f9381aa65

    • SHA256

      c91a48ee32bf0d27b05dfc3703a4ecc96941485b23055e023d0dcffccebdb802

    • SHA512

      2e0ce66577950db783318aec139246f931a392630f4e67154e371dba26ad4281181ed32dd0cf8505be2a3295294e5ff850d26ad31530b4cf3db41a9c396b44ea

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks