ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33 | Triage

Submit
Reports

Overview

overview

8

Static

static

ed96d9fffb...33.exe

windows7-x64

8

ed96d9fffb...33.exe

windows10-2004-x64

8

Sharing

General

Target

ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33
Size

317KB
Sample

221120-za3dhaba97
MD5

ef74732f025a9a423a9c2338b0d9b892
SHA1

028f85386287db7e0e0357a41974b60936492f0a
SHA256

ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33
SHA512

8d466bde5298646905c3ef9d94c1f34fc37f94b1bcd4d0aa544a1b83d547c8ad622347347d4ef7b9bdeeeac216c26b8b67f680292984b64ddc9a29af3e532296
SSDEEP

3072:NVpRMSgIidZ7+7l4+9XflZ6Rf42li7Ln0aWhhw245p9ktIwFj9wXvaoKrGG1k67m:NV9EAaeP+unlWhB4jJTeXS

Score

8^/10

macro macro_on_action

Static task

static1

Behavioral task

behavioral1

Sample

ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33.exe

Resource

win7-20221111-en

macro macro_on_action

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33.exe

Resource

win10v2004-20220812-en

macro macro_on_action

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33
- Size
  
  317KB
- MD5
  
  ef74732f025a9a423a9c2338b0d9b892
- SHA1
  
  028f85386287db7e0e0357a41974b60936492f0a
- SHA256
  
  ed96d9fffb16a7d241bc09a8fa10f20824859a0c56973fd74ef17e58c242ba33
- SHA512
  
  8d466bde5298646905c3ef9d94c1f34fc37f94b1bcd4d0aa544a1b83d547c8ad622347347d4ef7b9bdeeeac216c26b8b67f680292984b64ddc9a29af3e532296
- SSDEEP
  
  3072:NVpRMSgIidZ7+7l4+9XflZ6Rf42li7Ln0aWhhw245p9ktIwFj9wXvaoKrGG1k67m:NV9EAaeP+unlWhB4jJTeXS
Score

8^/10

macro macro_on_action
- Office macro that triggers on suspicious action
  Office document macro which triggers in special circumstances - often malicious.
  macro macro_on_action
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

macromacro_on_action

behavioral2

macromacro_on_action

© 2018-2024

Terms | Privacy