0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

0f4da56594...89.doc

windows7-x64

6

0f4da56594...89.doc

windows10-2004-x64

1

Sharing

General

Target

0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89
Size

45KB
Sample

221127-alts3aaf6y
MD5

1f9a50d8bd199df4ba6651fb260cf9d7
SHA1

832cce0a44d064fce1469142715f45be864d6cc7
SHA256

0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89
SHA512

52c6d50580c824dfa386c30b66cd582e377739939216e4b89ccfaf8bc0bcdff82f06a82893df9532e09a4b7039eb02e53702c8350fa0cef6557ad0b430ed9c0c
SSDEEP

384:A9GPkgbwu1iSZfI/PKRO34pi9lt5q2On0GJnvj3INg+xc+o4M60jTYk3td/+:Nbw+APoOjX3G0GJnsNK+ok4

Score

8^/10

collection macro macro_on_action

Static task

static1

macro macro_on_action

1 signatures

Behavioral task

behavioral1

Sample

0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89.doc

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89.doc

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89
- Size
  
  45KB
- MD5
  
  1f9a50d8bd199df4ba6651fb260cf9d7
- SHA1
  
  832cce0a44d064fce1469142715f45be864d6cc7
- SHA256
  
  0f4da5659428e5d056b9c9c7c3d40064d8b719a7c5b27af422c4665952224e89
- SHA512
  
  52c6d50580c824dfa386c30b66cd582e377739939216e4b89ccfaf8bc0bcdff82f06a82893df9532e09a4b7039eb02e53702c8350fa0cef6557ad0b430ed9c0c
- SSDEEP
  
  384:A9GPkgbwu1iSZfI/PKRO34pi9lt5q2On0GJnvj3INg+xc+o4M60jTYk3td/+:Nbw+APoOjX3G0GJnsNK+ok4
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

macromacro_on_action

behavioral1

behavioral2

© 2018-2024

Terms | Privacy