c9731ed54f222f4ae09b64346a420f5366bd253f43306a7be795137aa1e08106 | Triage

Sharing

General

Target

Draft Shipping Documents.xlsx
Size

173KB
Sample

220914-hkrw3shdh2
MD5

251d9c6e6f158b654e9f950361257cfc
SHA1

c764cc8ea9a2dcfb4f50716f3047995866a15aea
SHA256

c9731ed54f222f4ae09b64346a420f5366bd253f43306a7be795137aa1e08106
SHA512

78ac5f04fe6d84f6ab8d7ddaa1005a8256b65b1fbdf90397d72c783a7043741dd7eb9012654b25b6effa14b8dab4cf69fdcbbdbf3435bbb1b1b17def8182dd1d
SSDEEP

3072:15SqZHNXdZS8bqr50aRM7u4tKc/yNVW18dFS3P2yseHPo+j20njpOxJUC5mQQ/A/:2qlNKikWh3/yNVWeXS3Z20n1OsrQQIPh

Score

1^/10

Malware Config

Targets

- Target
  
  Draft Shipping Documents.xlsx
- Size
  
  173KB
- MD5
  
  251d9c6e6f158b654e9f950361257cfc
- SHA1
  
  c764cc8ea9a2dcfb4f50716f3047995866a15aea
- SHA256
  
  c9731ed54f222f4ae09b64346a420f5366bd253f43306a7be795137aa1e08106
- SHA512
  
  78ac5f04fe6d84f6ab8d7ddaa1005a8256b65b1fbdf90397d72c783a7043741dd7eb9012654b25b6effa14b8dab4cf69fdcbbdbf3435bbb1b1b17def8182dd1d
- SSDEEP
  
  3072:15SqZHNXdZS8bqr50aRM7u4tKc/yNVW18dFS3P2yseHPo+j20njpOxJUC5mQQ/A/:2qlNKikWh3/yNVWeXS3Z20n1OsrQQIPh
Score

1^/10
behavioral1 behavioral2
- Target
  
  decrypted
- Size
  
  168KB
- MD5
  
  87e3f760a097da0b619eaceed22711be
- SHA1
  
  64531de7c4f972aab768148ae594e0af1e8bba0f
- SHA256
  
  be76eba33a9eef60c5dc5bcf85dd024a319bb3415248d50cfd7dce41a3b0e9ff
- SHA512
  
  c89e1b5f28ba2c0bba43373cd295d961cbc27aba133baaae38eddd268972a6aac75f7957fa3032f81907a5d2b4b53a49245507ea44dbb894c2931636895332f1
- SSDEEP
  
  3072:YM8TlAbQh12ZOhivfWh05bQReF8a5YQZFlBApeknaJSGUqiszMKp4114HkSwO:YM8TVlh0ceFXRBBknad/+TRFO
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4