General
-
Target
8d7ba6a49555b8ad4026c881dc805198
-
Size
83KB
-
Sample
221122-1an2jsda9x
-
MD5
8d7ba6a49555b8ad4026c881dc805198
-
SHA1
f7bd8deb05c3311c294d8200e37c4f76ade593db
-
SHA256
094f3820e49599298e5155ddcdd08083932b60920ef326d537d1e7d0476a853a
-
SHA512
992d2b916a620bc0f5f42fe50cfe026f6fbd6f24ed0383af986fffe92595a54d24c8de9726bb36c53425f012268acca4c2113be4ef592af76a36dd82a2304789
-
SSDEEP
768:7DVs3+I/M7u96W0+PPjY30000JMH8QfMJDenNBJj/r+OYIVDELUPPPPPPPPPPPPM:XhGMC8W4k5NDYIVoLtfi6zD
Behavioral task
behavioral1
Sample
8d7ba6a49555b8ad4026c881dc805198.doc
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
8d7ba6a49555b8ad4026c881dc805198.doc
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
8d7ba6a49555b8ad4026c881dc805198
-
Size
83KB
-
MD5
8d7ba6a49555b8ad4026c881dc805198
-
SHA1
f7bd8deb05c3311c294d8200e37c4f76ade593db
-
SHA256
094f3820e49599298e5155ddcdd08083932b60920ef326d537d1e7d0476a853a
-
SHA512
992d2b916a620bc0f5f42fe50cfe026f6fbd6f24ed0383af986fffe92595a54d24c8de9726bb36c53425f012268acca4c2113be4ef592af76a36dd82a2304789
-
SSDEEP
768:7DVs3+I/M7u96W0+PPjY30000JMH8QfMJDenNBJj/r+OYIVDELUPPPPPPPPPPPPM:XhGMC8W4k5NDYIVoLtfi6zD
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Drops startup file
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-