General
-
Target
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf.doc
-
Size
105KB
-
Sample
220807-mg8gwaheej
-
MD5
cb92a31e913c497e5ff3bcc9bd8ec9ed
-
SHA1
4950cfbc9f3d8fa20ed49ab2e2ed343d8c32902b
-
SHA256
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf
-
SHA512
12b51bcc79c1d54cd7137bb67f01002d6ef48eb1afd9457896b5cbaab56c642e4364d46711008a43ffe26414dc9e33eea6b6c49d64eddf20deb855245c4a2fa4
Behavioral task
behavioral1
Sample
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf.doc
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf.doc
Resource
win10v2004-20220722-en
Malware Config
Extracted
Protocol: ftp- Host:
94.140.112.24 - Port:
21 - Username:
zadmin_1122 - Password:
zadmin_1122
Targets
-
-
Target
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf.doc
-
Size
105KB
-
MD5
cb92a31e913c497e5ff3bcc9bd8ec9ed
-
SHA1
4950cfbc9f3d8fa20ed49ab2e2ed343d8c32902b
-
SHA256
cef947e5a5feccfba0df2799e5dd5529c60b83bd9636538a08ef1a4b4f0ceadf
-
SHA512
12b51bcc79c1d54cd7137bb67f01002d6ef48eb1afd9457896b5cbaab56c642e4364d46711008a43ffe26414dc9e33eea6b6c49d64eddf20deb855245c4a2fa4
Score10/10-
Drops startup file
-