ccdda1c9f6177f3bf1b0f887550a961c811f02242dbd512ec2fe30d2f9cf73e4 | Triage

Submit
Reports

Overview

overview

Static

static

8

d2205caf_b...is.doc

windows7_x64

d2205caf_b...is.doc

windows10_x64

Sharing

General

Target

d2205caf_by_Libranalysis
Size

79KB
Sample

210507-dr5qckgqxj
MD5

d2205caf12798214ae649079c67f9122
SHA1

d773c0f28feb0d049effb412492e414a9ad5384c
SHA256

ccdda1c9f6177f3bf1b0f887550a961c811f02242dbd512ec2fe30d2f9cf73e4
SHA512

e43ccbbdbf9366df32ca0beeb47673d5575033f83058ca0b2e1976d4bcfa8ea4ebe3f3ee6c5453862a8c13b8b733a085ae6c15b660d3f51b6939e53c3baeda1b

Score

10^/10

macro

Static task

static1

Behavioral task

behavioral1

Sample

d2205caf_by_Libranalysis.doc

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d2205caf_by_Libranalysis.doc

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d2205caf_by_Libranalysis
- Size
  
  79KB
- MD5
  
  d2205caf12798214ae649079c67f9122
- SHA1
  
  d773c0f28feb0d049effb412492e414a9ad5384c
- SHA256
  
  ccdda1c9f6177f3bf1b0f887550a961c811f02242dbd512ec2fe30d2f9cf73e4
- SHA512
  
  e43ccbbdbf9366df32ca0beeb47673d5575033f83058ca0b2e1976d4bcfa8ea4ebe3f3ee6c5453862a8c13b8b733a085ae6c15b660d3f51b6939e53c3baeda1b
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy