Overview

overview

10

Static

static

10

8dc94ada90...3.docx

windows7-x64

4

8dc94ada90...3.docx

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    8dc94ada90ea9baad62671d2c1beb593005e03c59f61a5bbfd371486fd316743.zip

  • Size

    97KB

  • MD5

    3ce70342ba575b093239c6a1dda2f7a3

  • SHA1

    d1ef0663bbc5894b991bb61974be0becefd7ce27

  • SHA256

    4b1477a565c6e5d131f590ef2f80fa611b17aa3e5f29b83ee7063b3da5b60f77

  • SHA512

    57df1d81762a31f07cba2f04e924eb77ba867c6737af5cd64a7bcfb91dc629e40f93850ce3de86e4724d53b0a7da09bf3f3b31b38fcf7375e85cff6eee044dee

  • SSDEEP

    1536:8WxsaBPqxA5+ayRA3MFnQGtNElGJ2+G5AEAnNV3hx5W4mfCCQjPUoqZ:XsaBPqO50RA8FnKlKPZnj3Jlbr0Z

Score
10/10

Malware Config

Extracted

Rule
Microsoft Office MHTML OLEObject
C2

ftp://user:[email protected]/joke.html

http://cdn.discordapp.com/attachments/1018266089236484148/1021589791055282240/smartscreen.html

Signatures

  • Office document contains embedded OLE objects 1 IoCs

    Detected embedded OLE objects in Office documents.

Files

  • 8dc94ada90ea9baad62671d2c1beb593005e03c59f61a5bbfd371486fd316743.zip
    .zip

    Password: infected

  • 8dc94ada90ea9baad62671d2c1beb593005e03c59f61a5bbfd371486fd316743
    .docx office2007