027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7 | Triage

Submit
Reports

Overview

overview

8

Static

static

027e886037...a7.exe

windows7-x64

8

027e886037...a7.exe

windows10-2004-x64

8

Sharing

General

Target

027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7
Size

641KB
Sample

221121-1tpgesce5y
MD5

d12f7e229ac31e11ffa569c84c71b056
SHA1

63875568676cbc5a6ec32261a80d7a2c77cc7237
SHA256

027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7
SHA512

780aca7b445f5300ce91a60aa6ea548fa0551454942b97762f466a47930a56500116d3040cbc6827d303c9adb597c73fa359d692a75bd47ba1df98009455abf6
SSDEEP

12288:rXhciSUMvD8wJ/J7M/SF7G0JT7npZmXSfYveGB19Jg/qEgqR:DNoDVHHJG0JT7npRGeW3Jg/qEgqR

Score

8^/10

macro macro_on_action

Static task

static1

Behavioral task

behavioral1

Sample

027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7.exe

Resource

win7-20220812-en

macro macro_on_action

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7.exe

Resource

win10v2004-20221111-en

macro macro_on_action

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7
- Size
  
  641KB
- MD5
  
  d12f7e229ac31e11ffa569c84c71b056
- SHA1
  
  63875568676cbc5a6ec32261a80d7a2c77cc7237
- SHA256
  
  027e886037f6a4bcd477ccd27801739b2e45666814a7f20f00b15722b3bbcea7
- SHA512
  
  780aca7b445f5300ce91a60aa6ea548fa0551454942b97762f466a47930a56500116d3040cbc6827d303c9adb597c73fa359d692a75bd47ba1df98009455abf6
- SSDEEP
  
  12288:rXhciSUMvD8wJ/J7M/SF7G0JT7npZmXSfYveGB19Jg/qEgqR:DNoDVHHJG0JT7npRGeW3Jg/qEgqR
Score

8^/10

macro macro_on_action
- Office macro that triggers on suspicious action
  Office document macro which triggers in special circumstances - often malicious.
  macro macro_on_action
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

macromacro_on_action

behavioral2

macromacro_on_action

© 2018-2024

Terms | Privacy