Overview

overview

8

Static

static

9471b4a150...d5.exe

windows7-x64

8

9471b4a150...d5.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9471b4a150c23f11c783b0bce788511591135dbf42f576de1066031487e9b1d5

  • Size

    561KB

  • Sample

    221121-1rm6kshb33

  • MD5

    b66cc08fea6c3a38f2e6c4a32fbd7e1e

  • SHA1

    b66b10b1fa9e97da0bd64b4478fd9d05a6dceada

  • SHA256

    9471b4a150c23f11c783b0bce788511591135dbf42f576de1066031487e9b1d5

  • SHA512

    95413c14444c25d87ecdb1db00e182f73b1ede8868933fb7281b8a9bde42d4d198364fb07418078118e27be87074d1b2bd317c07ce823f51ed6b573fafaf81b7

  • SSDEEP

    12288:rkMIz+ZIg7qDs62eEj8G4fNsA2peq8nenbo49NQpHYBJWsMfBE:kz+ZIgmDs6TqaOA2poensU3JWBfBE

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      9471b4a150c23f11c783b0bce788511591135dbf42f576de1066031487e9b1d5

    • Size

      561KB

    • MD5

      b66cc08fea6c3a38f2e6c4a32fbd7e1e

    • SHA1

      b66b10b1fa9e97da0bd64b4478fd9d05a6dceada

    • SHA256

      9471b4a150c23f11c783b0bce788511591135dbf42f576de1066031487e9b1d5

    • SHA512

      95413c14444c25d87ecdb1db00e182f73b1ede8868933fb7281b8a9bde42d4d198364fb07418078118e27be87074d1b2bd317c07ce823f51ed6b573fafaf81b7

    • SSDEEP

      12288:rkMIz+ZIg7qDs62eEj8G4fNsA2peq8nenbo49NQpHYBJWsMfBE:kz+ZIgmDs6TqaOA2poensU3JWBfBE

    Score
    8/10
    macromacro_on_action

    • Office macro that triggers on suspicious action

      Office document macro which triggers in special circumstances - often malicious.

      macromacro_on_action
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks