ta505 | 3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51 | Triage

Submit
Reports

Overview

overview

Static

static

8

3d68985e9c...51.xls

windows7_x64

3d68985e9c...51.xls

windows10-2004_x64

Sharing

General

Target

3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51
Size

283KB
Sample

220701-hx35waagf7
MD5

d1500ecd912ea4816ce4ed184fb85b4d
SHA1

315b127de2bde334324a30d608545b05bf35c7fb
SHA256

3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51
SHA512

1e89e106ea8754d1c3f806823110526ad56341c0a383a4877e38f2af2ed0fab84f6c3d4a6947e0e38baff852cb7b5c82733b34f0da3d79a50f8e6a10f87efd77

Score

10^/10

ta505 macro macro_on_action

Static task

static1

macro macro_on_action

Behavioral task

behavioral1

Sample

3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51.xls

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51.xls

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51
- Size
  
  283KB
- MD5
  
  d1500ecd912ea4816ce4ed184fb85b4d
- SHA1
  
  315b127de2bde334324a30d608545b05bf35c7fb
- SHA256
  
  3d68985e9c33958b324d57f35169b871a1c58491697057d6ed4c474a57a41c51
- SHA512
  
  1e89e106ea8754d1c3f806823110526ad56341c0a383a4877e38f2af2ed0fab84f6c3d4a6947e0e38baff852cb7b5c82733b34f0da3d79a50f8e6a10f87efd77
Score

10^/10

ta505
- TA505
  Cybercrime group active since 2015, responsible for families like Dridex and Locky.
  ta505
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

macromacro_on_action

behavioral1

behavioral2

© 2018-2025

Terms | Privacy