6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e | Triage

Submit
Reports

Overview

overview

Static

static

6bd6ebedf3...e.docm

windows7-x64

7

6bd6ebedf3...e.docm

windows10-2004-x64

1

Sharing

General

Target

6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e
Size

166KB
Sample

221130-vb15lsgg23
MD5

c0c962b338b1ee30a1bca6d37bdaa68c
SHA1

7dd5472a36ab0b4d0694b4431277ba0a6cb4ae88
SHA256

6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e
SHA512

14c9055398795a1657e2e479c57fffc0d10c8d35979ca1c07d6f1f46841516c582596d563968796dcfb59a2484323f8040c36cf958c3cefcc790438e0634a8c9
SSDEEP

3072:TS1XRJHB2yrlqx1Jxh3Sc7g2QhjsDhroHFNyJkc67dGTZVsaqfgL:TmXReuGJ3ZsyV8HTOkwZVsA

Score

10^/10

websettings

Static task

static1

Behavioral task

behavioral1

Sample

6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e.docm

Resource

win7-20221111-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e.docm

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

http://fast-cargo.com/images/file/vb/doc/41.doc

Targets

- Target
  
  6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e
- Size
  
  166KB
- MD5
  
  c0c962b338b1ee30a1bca6d37bdaa68c
- SHA1
  
  7dd5472a36ab0b4d0694b4431277ba0a6cb4ae88
- SHA256
  
  6bd6ebedf325c907a192c08f2f4dc974cfead633b2e5241ba9b1c2984098258e
- SHA512
  
  14c9055398795a1657e2e479c57fffc0d10c8d35979ca1c07d6f1f46841516c582596d563968796dcfb59a2484323f8040c36cf958c3cefcc790438e0634a8c9
- SSDEEP
  
  3072:TS1XRJHB2yrlqx1Jxh3Sc7g2QhjsDhroHFNyJkc67dGTZVsaqfgL:TmXReuGJ3ZsyV8HTOkwZVsA
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy