Overview

overview

10

Static

static

legislate.07.20.doc

windows7_x64

10

legislate.07.20.doc

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    legislate.07.20.doc

  • Size

    113KB

  • Sample

    200715-y8fhhefwej

  • MD5

    b061e160aa9d083cb5ac44adbd33e160

  • SHA1

    cdfd893d22869810969dc5bd42ac147e1d1a1051

  • SHA256

    6c21170ee4c310fad7a989bae8c08f591f0648c4099822d7931efbbaec99fa39

  • SHA512

    f59b65737ba654fefded6bc3fe279e6db29b4e52dcb0481b0bd191f191bb36bf833b695c4b6ee3c1c14435c6423f30aeedfe5b5112262425c3212d86db5157ce

Score
10/10
discovery

Malware Config

Targets

    • Target

      legislate.07.20.doc

    • Size

      113KB

    • MD5

      b061e160aa9d083cb5ac44adbd33e160

    • SHA1

      cdfd893d22869810969dc5bd42ac147e1d1a1051

    • SHA256

      6c21170ee4c310fad7a989bae8c08f591f0648c4099822d7931efbbaec99fa39

    • SHA512

      f59b65737ba654fefded6bc3fe279e6db29b4e52dcb0481b0bd191f191bb36bf833b695c4b6ee3c1c14435c6423f30aeedfe5b5112262425c3212d86db5157ce

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks