Analysis
-
max time kernel
148s -
max time network
44s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
21-05-2022 03:50
General
-
Target
f2973c6947472704baf28e9db060471323d290d4a4d74f41389b6cb83f3efd7b.doc
-
Size
9KB
-
MD5
ee4338ee50fa964115235527c63bb479
-
SHA1
e97768b0eeacc33805e98c9ef7928e02150d8355
-
SHA256
f2973c6947472704baf28e9db060471323d290d4a4d74f41389b6cb83f3efd7b
-
SHA512
b328ba0d6bcb5ba35bc5fc1e9ad56b055647d252e926acb07a0df1fc4b8a3b0fc5d39f3cd213d122a5f713e138fcf692b5393226ebc63df6a821aa0c2320e931
Score
1/10
Malware Config
Signatures
-
Modifies Internet Explorer settings 1 TTPs 9 IoCs
-
Suspicious behavior: AddClipboardFormatListener 1 IoCs
-
Suspicious use of SetWindowsHookEx 21 IoCs
Processes
-
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE"C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\f2973c6947472704baf28e9db060471323d290d4a4d74f41389b6cb83f3efd7b.doc"1⤵
- Modifies Internet Explorer settings
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix ATT&CK v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1680-54-0x00000000728E1000-0x00000000728E4000-memory.dmpFilesize
12KB
-
memory/1680-55-0x0000000070361000-0x0000000070363000-memory.dmpFilesize
8KB
-
memory/1680-56-0x000000005FFF0000-0x0000000060000000-memory.dmpFilesize
64KB
-
memory/1680-57-0x0000000076451000-0x0000000076453000-memory.dmpFilesize
8KB
-
memory/1680-58-0x000000007134D000-0x0000000071358000-memory.dmpFilesize
44KB