03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9 | Triage

Submit
Reports

Overview

overview

Static

static

03b96ab568...9.docm

windows7-x64

7

03b96ab568...9.docm

windows10-2004-x64

1

Sharing

General

Target

03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9
Size

83KB
Sample

221130-v6dykabb64
MD5

342eac015ea7361729f6fb1506ac4ef1
SHA1

e46dd99f1e3dd352abd161f1e8d61aebc062d6a6
SHA256

03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9
SHA512

6ae4ce90d9966f16bc5220c926ec29aab6250e4928f87201084e84269de2f748b6bb27da611751cd521299946e3050c0e8b277c3bb142adf2a44636e822fdb90
SSDEEP

1536:1mS1WExOoRX51j1BPpoynaSlqx1JxpHj3Sc7g2Qh8eH6LG/:AS1XRJHB2yrlqx1Jxh3Sc7g2Qh1aq/

Score

10^/10

websettings

Static task

static1

Behavioral task

behavioral1

Sample

03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9.docm

Resource

win7-20221111-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9.docm

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

https://files.catbox.moe/o7mgi1.doc

Targets

- Target
  
  03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9
- Size
  
  83KB
- MD5
  
  342eac015ea7361729f6fb1506ac4ef1
- SHA1
  
  e46dd99f1e3dd352abd161f1e8d61aebc062d6a6
- SHA256
  
  03b96ab568d5a4a8d53ee14b6a571bf0fd5de50b6db02555420de7cf3d9737e9
- SHA512
  
  6ae4ce90d9966f16bc5220c926ec29aab6250e4928f87201084e84269de2f748b6bb27da611751cd521299946e3050c0e8b277c3bb142adf2a44636e822fdb90
- SSDEEP
  
  1536:1mS1WExOoRX51j1BPpoynaSlqx1JxpHj3Sc7g2Qh8eH6LG/:AS1XRJHB2yrlqx1Jxh3Sc7g2Qh1aq/
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy