1113c5a60ba15ffd2752293f8653c7e5fa4d73892a5560e5defae2a59cd8dfba | Triage

Submit
Reports

Overview

overview

Static

static

8d61ea9ef3...2.docx

windows7-x64

8d61ea9ef3...2.docx

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

220915-jkb2asgacl_pw_infected.zip
Size

57KB
Sample

220915-zlz3hsead8
MD5

cf90650a9e759cd858bffec3be6a60c5
SHA1

4a594ae094963d73a0c1c578c6ec197bf1e3d300
SHA256

1113c5a60ba15ffd2752293f8653c7e5fa4d73892a5560e5defae2a59cd8dfba
SHA512

373add8ef8aff8557855eddc4f0c7749c49b902c82a64fff8fadc0843bc8c37881dbc184fb5caffd376650b3021e497b3e20e6ff7bc35a6dc89382ac417a3fc5
SSDEEP

1536:inEQsFlGYbZ4MPYyev5IrLLra+mfDRaJyXrLqapW/ZUZT:iEQsr1Z4MPLeirLLrYBrL5w/OZT

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8d61ea9ef38b6e7b36f466299223ad43339080d3a9914059c88ca3dd6be5cd32.docx

Resource

win7-20220812-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

8d61ea9ef38b6e7b36f466299223ad43339080d3a9914059c88ca3dd6be5cd32.docx

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office MHTML OLEObject

C2

ftp://epiz_32594997:[email protected]/htdocs/a.html

Extracted

Credentials

Protocol: ftp
Host:
ftpupload.net
Port:
21
Username:
epiz_32594997
Password:
FKmeEtIWDg

Extracted

Credentials

Protocol: ftp
Host:
ftpupload.net
Port:
21
Username:
anonymous
Password:
User@

Targets

- Target
  
  8d61ea9ef38b6e7b36f466299223ad43339080d3a9914059c88ca3dd6be5cd32
- Size
  
  75KB
- MD5
  
  cbc307d6059925e9abbdbdec4d9ec0c1
- SHA1
  
  8f0fc563f43cc1422b523a21f01858e031761e5f
- SHA256
  
  8d61ea9ef38b6e7b36f466299223ad43339080d3a9914059c88ca3dd6be5cd32
- SHA512
  
  58d4ef2537a7afaa1f37787f2c40e3084c19ccd350216c691ce9296b18d2864c2286176413ada7d53a350a9a98e2eab6b660a2af74b921d271e0fe3c1c60201f
- SSDEEP
  
  1536:86yyyyyyyy7bb9/5sLMmmMBIBEgMFBuvfve6046kHOUZgfCG5934Si:Vbh585IBm5IhZtGyR
Score

10^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy