39e68c2f4c420efb50ef2e71bc9091efbeda66f487f527c2a82fedf6385cfa69 | Triage

Sharing

General

Target

39e68c2f4c420efb50ef2e71bc9091efbeda66f487f527c2a82fedf6385cfa69
Size

774KB
Sample

221125-x7wk4sab79
MD5

5ca2a78d4c9d4cc7c2b1773a9bd3bdff
SHA1

f2e0e61cb6def0662bdaee5c3d385b680d92ddc5
SHA256

39e68c2f4c420efb50ef2e71bc9091efbeda66f487f527c2a82fedf6385cfa69
SHA512

0a13c2f8b5745b048ed298b9a814ead4426d35712cec3cb58cabe1a02a80f9dc038c75b167962e87624f05a278cb667e5296552042756572bd172dcafe7936a7
SSDEEP

12288:slFUsDW1YSM0V0OXntt0gA1U5/XOQuRCh2zJZx60ro00xkBxVCOFGpxL3I:gA1WOWzE/X3u8hTwxVRAU

Score

1^/10

Malware Config

Targets

- Target
  
  松林机房割接资料最新/仁寿松林机房FTTN工程 MDF端口占用表.xls
- Size
  
  12KB
- MD5
  
  3c3b6527ae54b3e53586ad7972013273
- SHA1
  
  1d5ba24c5efcd408e8b08800b37c7f3165af9cf4
- SHA256
  
  88580a534b6fd413e29cabbf059d053a47d12fd64a838bfeed287bde84b2d867
- SHA512
  
  0bd787ea92e6d2d4db54dc7cb9c763db96de049d4325dc3c319440af2a409fb20ae83ad7ac26acd3d3f95243df1bb2e844cd618ca732c82d5c71a92648c73b86
- SSDEEP
  
  192:FFpXpXlT0ne2+Eg3CqtxwFp2VrMLN8jITpO1tY8hhPPPPPPPPPP6ntag3LW7gH9i:fxxlT0nZ+Eg3xtxwFQVrMLN8jITY+tab
Score

1^/10
behavioral1 behavioral2
- Target
  
  松林机房割接资料最新/松林FTTB端口顺号表 -.xls
- Size
  
  25KB
- MD5
  
  a9c9d7c3894f22cd2c4354db8f5e1ec6
- SHA1
  
  ca10f05228328dfcffd7c0481610f5b2038e922e
- SHA256
  
  0ee3a9d996ff01633edea4dbf78786e2d85e0ac9f1b42a49ec54e410691817b5
- SHA512
  
  5f1cd4819ca20a5c29acab8480492ede8cae6afd0963bc4cb5fe33e78b6f1e52216a12198a4fb3ca2f9cd56b05e4d68fc6f1d2fd7e4d73fe313df2b661a9174b
- SSDEEP
  
  384:6xxx0Mqr+zINREbsbhBzq749z+l5N0iZ5A3CRI:6xxx0Mqr+zIN2F7496lXXa
Score

1^/10
behavioral3 behavioral4
- Target
  
  松林机房割接资料最新/松林机房HW5616-规划表.xls
- Size
  
  12KB
- MD5
  
  16eab0656da3d7c469583b4007a96b64
- SHA1
  
  74c4eb1cbdc808ad9aca8a264aa1d8d6d77b4e96
- SHA256
  
  81d9f1ea8e2ba5fafc0acbe857580d101e5e6a204567310e4eaf4698a5c511c0
- SHA512
  
  94dfb00b5fdcb8aa78e1809ce50b62a1ffd2ec273a0f74c827cf5d5300b85d1652c23d34dfc1bcdf9cd77c91e51809e3203d1ab2805ac17f26f80bcb97ff2e38
- SSDEEP
  
  192:E+pXpXpXT2Rf3PECqNrLTMtp+wVg8xp2jFdtY8hhPPPPPPPPPP2eBtBnx7CJQ95Z:JxxxaRf3PExNrLTMtIwVg8xQjFqeHBn7
Score

1^/10
behavioral5 behavioral6
- Target
  
  松林机房割接资料最新/松林机房外ONUFTTN---光路路由信息.xls
- Size
  
  10KB
- MD5
  
  b8aaea38aec61c101adcf40ca78cc7f0
- SHA1
  
  a89c9574071ae9012e23fa8f8724e9556290c310
- SHA256
  
  87095b1087cd79d727ed071f6c525ece82ec8d7b45b1a5372e0910610c9903a2
- SHA512
  
  5288ab7bc275d8abe473ecdf1e8614c90dcc2afd057f61ee14e2f990b186814c86cc850cf572386877bb7fefb34f4b0659e491aec4cfe9d9e1c373a6fcf5442a
- SSDEEP
  
  192:5+pXpXpXeSqpQ0iUGCq3ExrjNWwIM8FLTgitI8hhPPPPPPPPPP4XC4IuLCcOlI0f:4xxx2+0iUGx3ExrjNWwIM8FLTgBX1IuM
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8