Overview

overview

8

Static

static

8

elett_4173037.doc

windows7_x64

5

elett_4173037.doc

windows10_x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    elett_4173037.doc

  • Size

    81KB

  • Sample

    210122-tt98q3e2me

  • MD5

    b47a1ed43578835f4a97996e9b75bc8f

  • SHA1

    74bed3302c4bf96eb8a23c14fcc7335429ae8705

  • SHA256

    295efefcc70ad158b02e92c352eb40475d66a5f57fef43cd13a2f33abbf49d13

  • SHA512

    9df48d7be2ef4c0d4c968d382ec87bac85eee7c8bb15b2eacd077beb1bb5dd60428d3e4f29be551ed78cbc70d619322ded97f59c5223de76876a3444ac71ee86

Score
8/10
macroransomware

Malware Config

Targets

    • Target

      elett_4173037.doc

    • Size

      81KB

    • MD5

      b47a1ed43578835f4a97996e9b75bc8f

    • SHA1

      74bed3302c4bf96eb8a23c14fcc7335429ae8705

    • SHA256

      295efefcc70ad158b02e92c352eb40475d66a5f57fef43cd13a2f33abbf49d13

    • SHA512

      9df48d7be2ef4c0d4c968d382ec87bac85eee7c8bb15b2eacd077beb1bb5dd60428d3e4f29be551ed78cbc70d619322ded97f59c5223de76876a3444ac71ee86

    Score
    5/10
    ransomware

    • Enumerates physical storage devices

      Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

3
T1082

Query Registry

2
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks