ebd57aec150e11814ad41d54be26b98366541deb34d62beeb3f05755a170ecaf | Triage

Sharing

General

Target

EBD57AEC150E11814AD41D54BE26B98366541DEB34D62BEEB3F05755A170ECAF
Size

10KB
Sample

221123-r2cyxsab34
MD5

1eb546f2028e09bb7c67f2bf50ac9fa7
SHA1

2fb75be209fe59a7a661363a783264fbdc0ddf8a
SHA256

ebd57aec150e11814ad41d54be26b98366541deb34d62beeb3f05755a170ecaf
SHA512

f053a8c341b2c07bf3880490ae8dc678796f350cafb45d1963abe2ab011ff84ebfc9a4fb9eac3696f222bae65d5e121a1baf1a8b404bd18beda354d11094ff1b
SSDEEP

192:ScIMmtPqCJuEG/bBLgOcjhz2ru5JhBH3kZ:SPXyJTJgO3aJrg

Score

10^/10

websettings

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

http://000000111100000200020200202000020@598930903/__________0000____________________000000_______________/_________000______.doc

Targets

- Target
  
  EBD57AEC150E11814AD41D54BE26B98366541DEB34D62BEEB3F05755A170ECAF
- Size
  
  10KB
- MD5
  
  1eb546f2028e09bb7c67f2bf50ac9fa7
- SHA1
  
  2fb75be209fe59a7a661363a783264fbdc0ddf8a
- SHA256
  
  ebd57aec150e11814ad41d54be26b98366541deb34d62beeb3f05755a170ecaf
- SHA512
  
  f053a8c341b2c07bf3880490ae8dc678796f350cafb45d1963abe2ab011ff84ebfc9a4fb9eac3696f222bae65d5e121a1baf1a8b404bd18beda354d11094ff1b
- SSDEEP
  
  192:ScIMmtPqCJuEG/bBLgOcjhz2ru5JhBH3kZ:SPXyJTJgO3aJrg
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2