Overview

overview

10

Static

static

8

954aea6dfd...1.docm

windows7_x64

10

954aea6dfd...1.docm

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    954aea6dfdc84a1fc4ae0ec1aba073c2d25e84587348c7df8abd77dbfee0b0a1

  • Size

    123KB

  • Sample

    220701-hm8ydaach8

  • MD5

    e6cdf2ab43cec436a8e63c1bcebdc68f

  • SHA1

    4e5fede8de660098fd33beb4f65cf9af36fcf0d2

  • SHA256

    954aea6dfdc84a1fc4ae0ec1aba073c2d25e84587348c7df8abd77dbfee0b0a1

  • SHA512

    b41003a39eb45f1261fe8bb758c672e408e4aa65db84b9138ae5608be731246dc66795d74ba6f6e5f0866d8bd7ec37fb62825968798659ad649b1a5dca68074e

Score
10/10
macro

Malware Config

Targets

    • Target

      954aea6dfdc84a1fc4ae0ec1aba073c2d25e84587348c7df8abd77dbfee0b0a1

    • Size

      123KB

    • MD5

      e6cdf2ab43cec436a8e63c1bcebdc68f

    • SHA1

      4e5fede8de660098fd33beb4f65cf9af36fcf0d2

    • SHA256

      954aea6dfdc84a1fc4ae0ec1aba073c2d25e84587348c7df8abd77dbfee0b0a1

    • SHA512

      b41003a39eb45f1261fe8bb758c672e408e4aa65db84b9138ae5608be731246dc66795d74ba6f6e5f0866d8bd7ec37fb62825968798659ad649b1a5dca68074e

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks