d7ac86d068661eeff64b952178879c7cdb7426fa93f769f75d237d071990b055 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SWIFT-MT103-VE 2022.xlsx
Size

756KB
Sample

220928-h2mzfsgdcq
MD5

ea0ba7ee7d611845784b4af6fc9ba004
SHA1

9fa13a80b4b0b3275332429664a7c012db9af60d
SHA256

d7ac86d068661eeff64b952178879c7cdb7426fa93f769f75d237d071990b055
SHA512

d39291f8346848a0ae505b75189292af93a26592fb6f1bf6758999d16b05e3232a1734cd7508f1b7bec0103b523e57eb1a2c4a4fd3090f99ddb2597c32afb38e
SSDEEP

12288:kszFNf3CqoYDC8RBBhdas4XGRtm/uP90JtVB2de6hcsfAzUuKtKIZU71h0TB7OyN:Ff1oKN4zip90Jp2HhFfAzjKtKiUhh0TF

Score

8^/10

Malware Config

Targets

- Target
  
  SWIFT-MT103-VE 2022.xlsx
- Size
  
  756KB
- MD5
  
  ea0ba7ee7d611845784b4af6fc9ba004
- SHA1
  
  9fa13a80b4b0b3275332429664a7c012db9af60d
- SHA256
  
  d7ac86d068661eeff64b952178879c7cdb7426fa93f769f75d237d071990b055
- SHA512
  
  d39291f8346848a0ae505b75189292af93a26592fb6f1bf6758999d16b05e3232a1734cd7508f1b7bec0103b523e57eb1a2c4a4fd3090f99ddb2597c32afb38e
- SSDEEP
  
  12288:kszFNf3CqoYDC8RBBhdas4XGRtm/uP90JtVB2de6hcsfAzUuKtKIZU71h0TB7OyN:Ff1oKN4zip90Jp2HhFfAzjKtKiUhh0TF
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2