Overview

overview

8

Static

static

8

编审说明.doc

windows7-x64

4

编审说明.doc

windows10-2004-x64

1

西环岛�...��.xls

windows7-x64

1

西环岛�...��.xls

windows10-2004-x64

1

西环岛�...��.xls

windows7-x64

1

西环岛�...��.xls

windows10-2004-x64

1

西环岛�...��.doc

windows7-x64

4

西环岛�...��.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    639110e413ccb8476f2066a0d43a0e3f538129cb7dade802f340d79b4dfc7faa

  • Size

    183KB

  • Sample

    221125-w1v6bshg6w

  • MD5

    326d5a70cff8a05d640ab00bf92c960d

  • SHA1

    8676d3718838b5b91ac3bc3ac0a37473591fa9e3

  • SHA256

    639110e413ccb8476f2066a0d43a0e3f538129cb7dade802f340d79b4dfc7faa

  • SHA512

    b468151b0a9781333401351d3fdb6439d193afcfa0e685ed283b4d53c8ab0515ac6d6977bf23ed5d7d6cfb081a20025792e88bba029f2136a67d09e2f0a2a7ef

  • SSDEEP

    3072:MYCmvyjYp+AOiFiHpzB5ok4b4DjTpu1WhyTH5Ht3P1xjwlcEHXDScT/LC79H:qm0eiD57wkjtuAhGHJFORHX3TM9H

Score
8/10
macroxlm

Malware Config

Targets

    • Target

      编审说明.doc

    • Size

      22KB

    • MD5

      e575841bdf52cda69edc53d4824d5fd6

    • SHA1

      1906d59fe2d6614bac44db6f6fae21639f2f60f7

    • SHA256

      9af39ce86f0a21d7598792fd2135bf33d8b05b3aa7687a52467d73292c471fd9

    • SHA512

      0b4e48a54b1aa4fb526329ef670849f1cce7f4f8681ca17d55138ba2e6336dd6df00d2250cd185f5897fbaedf24777682fd4f098873950eb94a5860f47cb89c1

    • SSDEEP

      96:ivbbvbEbbDbbsCIGFV2ZwOBfWXsgGKckqASr6grHVsV9xp+5wF/dueTz:5HV2tf3gvlDhgJsC5Gp

    Score
    4/10
    behavioral1behavioral2

    • Target

      西环岛绿道工程一标段/一标段汇总表.xls

    • Size

      11KB

    • MD5

      67ab6834fc2811c011ed059ee2ae6db9

    • SHA1

      1640915abd63edecfd115084ad6d2ae918253d5e

    • SHA256

      cf5b4333d1404f84d4f770a9ed01997536919e3ab809669dc6e598533c6787b5

    • SHA512

      64af826c21c9119de693274437726869c1274ef14a6f959ee0bb165b5f3cc0d4b1b5b6946291e1697dfdb7b71118c3147b1e3bfe7f4a0ee61109e0e76fbd5900

    • SSDEEP

      192:GbodUBZAnhpXpXpXpQpOlp2Mtx8hhPPPPPPPPPPBZA:CodgZAhxxx+YlQbZA

    Score
    1/10
    behavioral3behavioral4

    • Target

      西环岛绿道工程一标段/西环岛“绿道”工程一标段.xls

    • Size

      178KB

    • MD5

      d6fe41c2276a694eae9ee561cfab4291

    • SHA1

      d5fc8d57e9f5f936d515f262e6be22f5ca331954

    • SHA256

      b693e0fe18e10f54b939e0164502bd90c088971e053402561fe414c939ce2a3e

    • SHA512

      d98243cf56f7178436c4e38a930e10b43557b1f082f91b0f92b4169b1858ace54a32082079c7161263aa1a9d54d574e864ae330ad7258d453b26b05155eaf8ca

    • SSDEEP

      1536:ZRRRipU78syj1nKNUzpLz9f1K+tItTM1dw9IngUX+1dEenSA/vZ1Eo4MyFP/qsmC:Exn+UzpLz9fEc6IngUXiGBPi+ntU5Q

    Score
    1/10
    behavioral5behavioral6

    • Target

      西环岛绿道工程一标段/西环岛绿道工程编制说明.doc

    • Size

      15KB

    • MD5

      a86cafe089ab918307ab43cab39876c8

    • SHA1

      91234fd750d5f22b27b5dbe8c5654970b8b83921

    • SHA256

      6536cfeadf4d076673fcf329eaa66aafe1913c95f1296ccb99fdc307053c2b41

    • SHA512

      28a161f2871108ea0a6fd246b29f38df391a5b8f2ebbef3a3b8981a224c7baf2fbb71b17123e2aea6390322df04beb2a93d5dbd7a2e3f271902b8ea9745250fa

    • SSDEEP

      192:sFm5Akat7zpF55555mCK8j5Bz55555555pFpF6zBzBzBzBz555mK7uZVtzxzxzx/:V5AP20b2f2k/FF2

    Score
    4/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

4
T1112

Credential Access

Discovery

Query Registry

5
T1012

System Information Discovery

5
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks