Overview

overview

10

Static

static

8

Nicht best...1.docm

windows7-x64

10

Nicht best...1.docm

windows10-2004-x64

10

Resubmissions

02-12-2022 14:44

221202-r4aatabg91 10

02-12-2022 14:28

221202-rtegsaah8x 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Nicht bestätigt 670541.crdownload

  • Size

    77KB

  • Sample

    221202-r4aatabg91

  • MD5

    c0142660f90819bbeaa50a7f1661cbd6

  • SHA1

    31b94e4cf8eaa656851c071c7e3da0c7cba0ffc8

  • SHA256

    8d94a2f6cde012fbf6d57dee0d9abc7ea7d4f2d61704c2adfe6a7c95ae5b6fd9

  • SHA512

    ad96f573bf5d91cae8b931cb73571cbd9f284ea32fb6454b007c1a46bce1ce4f878322e541d36256c28f5c8da31a43129a0d12d966da81673a315dc61a715d8d

  • SSDEEP

    1536:IKHoj+0QQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQg:IKHQDEUNFu+E

Score
10/10
macro

Malware Config

Targets

    • Target

      Nicht bestätigt 670541.crdownload

    • Size

      77KB

    • MD5

      c0142660f90819bbeaa50a7f1661cbd6

    • SHA1

      31b94e4cf8eaa656851c071c7e3da0c7cba0ffc8

    • SHA256

      8d94a2f6cde012fbf6d57dee0d9abc7ea7d4f2d61704c2adfe6a7c95ae5b6fd9

    • SHA512

      ad96f573bf5d91cae8b931cb73571cbd9f284ea32fb6454b007c1a46bce1ce4f878322e541d36256c28f5c8da31a43129a0d12d966da81673a315dc61a715d8d

    • SSDEEP

      1536:IKHoj+0QQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQg:IKHQDEUNFu+E

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks