928d361233bd981716eb4396cd617d004b394fd2705ef6f43c86c9f2611063d6 | Triage

Submit
Reports

Overview

overview

Static

static

8

ordain_09.21.doc

windows10_x64

Sharing

General

Target

ordain_09.21.doc
Size

69KB
Sample

211018-qy8ezsefbq
MD5

2d7fb9d466c3209e6e16cf769e604a9a
SHA1

c6f80b1ea7d6eb0926510f5ab954c36213c71058
SHA256

928d361233bd981716eb4396cd617d004b394fd2705ef6f43c86c9f2611063d6
SHA512

ed7a03c6b8d3b4636ff1b6ee8a53b39484c626036f9f060032899643da9b02045c9d671d1bdeccc3708c6d2d314f4c8599b3f9526f29d43798484e2e476c3880

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

ordain_09.21.doc

Resource

win10-ja-20210920

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ordain_09.21.doc
- Size
  
  69KB
- MD5
  
  2d7fb9d466c3209e6e16cf769e604a9a
- SHA1
  
  c6f80b1ea7d6eb0926510f5ab954c36213c71058
- SHA256
  
  928d361233bd981716eb4396cd617d004b394fd2705ef6f43c86c9f2611063d6
- SHA512
  
  ed7a03c6b8d3b4636ff1b6ee8a53b39484c626036f9f060032899643da9b02045c9d671d1bdeccc3708c6d2d314f4c8599b3f9526f29d43798484e2e476c3880
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy