8340f192a38f93e6ad8fc515505e2d2a9d8b0457e3f2d684a60ba292aa8c1cd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Scan-29-11-2022.xls
Size

813KB
Sample

221129-hzdm1afh89
MD5

3c8761ae223c4e16060ec46b42d46ca6
SHA1

e52161319d8a16f308912d3fcfe834c31de4a411
SHA256

8340f192a38f93e6ad8fc515505e2d2a9d8b0457e3f2d684a60ba292aa8c1cd0
SHA512

13daa66c63c13ac557243ce7c0ed4fead59940411ed53686627fef16d8021d85243abcfa999e96c70a44b50cc292bd97a0c0f402979cfefda6a6fff547bd14b0
SSDEEP

24576:qinr5XXXXXXXXXXXXUXXXXXXXSXXXXXXXX4m+r5XXXXXXXXXXXXUXXXXXXXSXXXn:8QX1FU

Score

8^/10

Malware Config

Targets

- Target
  
  Scan-29-11-2022.xls
- Size
  
  813KB
- MD5
  
  3c8761ae223c4e16060ec46b42d46ca6
- SHA1
  
  e52161319d8a16f308912d3fcfe834c31de4a411
- SHA256
  
  8340f192a38f93e6ad8fc515505e2d2a9d8b0457e3f2d684a60ba292aa8c1cd0
- SHA512
  
  13daa66c63c13ac557243ce7c0ed4fead59940411ed53686627fef16d8021d85243abcfa999e96c70a44b50cc292bd97a0c0f402979cfefda6a6fff547bd14b0
- SSDEEP
  
  24576:qinr5XXXXXXXXXXXXUXXXXXXXSXXXXXXXX4m+r5XXXXXXXXXXXXUXXXXXXXSXXXn:8QX1FU
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2