Overview

overview

10

Static

static

10

US$ 10700.docx

windows7-x64

7

US$ 10700.docx

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    47aa58735b2c72835fcbd378dd8d12fc

  • Size

    32KB

  • MD5

    47aa58735b2c72835fcbd378dd8d12fc

  • SHA1

    cbef4be2258a3ef1e71310aeba5c0e5b2a1066e0

  • SHA256

    b1c02e99da499e54f8e8c165d38bafb71db0d0c52165b15af3c3c65ef860a845

  • SHA512

    033c56347ba711a7bcb2cb1bfdfa8decba01837d279b9c32596c4ee55f741acbd8b7621797c3cbe6d34402abcdc8737fbb5ae86db952bf6c73ddb1d8db591023

  • SSDEEP

    768:ZpHw29wXVN+gPgG/cHQlL03jPaVNfP4ckgh/QbJ2Xs8:ZmN+gPpcH6LCbaVN3zkghggJ

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://o.vg/9HdPCsT

Signatures

  • N/A. 1 IoCs

    N/A.

    dropper

Files

  • 47aa58735b2c72835fcbd378dd8d12fc
    .eml

    • https://webmail.kenpharma.co.ke/cpsess0120886429/3rdparty/roundcube/?_task=mail&_caps=pdf%3D1%2Cflash%3D0%2Ctiff%3D0%2Cwebp%3D1&_uid=664&_mbox=INBOX.spam&_framed=1&_action=preview#NOP

    • http://www.ht-cargo-shipping.com/

  • US$ 10700.docx
    .docx office2007
  • email-html-1.txt
    .html