6fa27836c14e050619b16fb9f99e48d70d4fccb9b41a9662d8c3d79f90632b3b | Triage

Submit
Reports

Overview

overview

Static

static

Doc_348563...4.docx

windows7-x64

7

Doc_348563...4.docx

windows10-2004-x64

1

Sharing

General

Target

Doc_3485638568454.docx.doc
Size

10KB
Sample

221202-ml5a1shc62
MD5

ed853603c698996c75d6238818113073
SHA1

5b830320e8d40044cf5367cb82221992ed31f031
SHA256

6fa27836c14e050619b16fb9f99e48d70d4fccb9b41a9662d8c3d79f90632b3b
SHA512

4f09839fff2a4877a4ff6d27d57da83bdcd20d337fc46e8da721a413cc718d72566ca21b24510020e4a3aacf9d24270e14e6783530d990ba6fa6097d53401ed2
SSDEEP

192:ScIMmtP8ar5G/bfIdTOy6namWBX8ex6y3prN:SPXt4ATOy6nosMpZ

Score

10^/10

websettings

Static task

static1

Behavioral task

behavioral1

Sample

Doc_3485638568454.docx

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

Doc_3485638568454.docx

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

http://weiuisdfiuewuidsifuweiriweuriuweiruiweu@zqpispa.it/document_o_0909000.doc

Targets

- Target
  
  Doc_3485638568454.docx.doc
- Size
  
  10KB
- MD5
  
  ed853603c698996c75d6238818113073
- SHA1
  
  5b830320e8d40044cf5367cb82221992ed31f031
- SHA256
  
  6fa27836c14e050619b16fb9f99e48d70d4fccb9b41a9662d8c3d79f90632b3b
- SHA512
  
  4f09839fff2a4877a4ff6d27d57da83bdcd20d337fc46e8da721a413cc718d72566ca21b24510020e4a3aacf9d24270e14e6783530d990ba6fa6097d53401ed2
- SSDEEP
  
  192:ScIMmtP8ar5G/bfIdTOy6namWBX8ex6y3prN:SPXt4ATOy6nosMpZ
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy