Overview

overview

8

Static

static

496d022268...8a.exe

windows7-x64

8

496d022268...8a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    496d022268377b73b5ab2f05d73136e76a43225dbfbd20e6c2cdde2a41f7b38a

  • Size

    674KB

  • Sample

    221203-1kfg6aca5z

  • MD5

    23c9f902879dbf23fbf32a29f74e734b

  • SHA1

    1f56edd70126d43e42a56626ca6ffa54d570ae3d

  • SHA256

    496d022268377b73b5ab2f05d73136e76a43225dbfbd20e6c2cdde2a41f7b38a

  • SHA512

    4cec8b51534e1f1b18c72dc22f9638394a12b91e3060708981db633cd5704e5116cbd826947949dd24d4b2953365938a00a0e77cf7630cc2af80f5232bb3c9ed

  • SSDEEP

    12288:rkMIese06snjBQ+H7Ab/rGIkQos6qcJWe8RI6srnycVP/oM:kTnjB1HQ/rGIkQJLcJiRIl7y6P/oM

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      496d022268377b73b5ab2f05d73136e76a43225dbfbd20e6c2cdde2a41f7b38a

    • Size

      674KB

    • MD5

      23c9f902879dbf23fbf32a29f74e734b

    • SHA1

      1f56edd70126d43e42a56626ca6ffa54d570ae3d

    • SHA256

      496d022268377b73b5ab2f05d73136e76a43225dbfbd20e6c2cdde2a41f7b38a

    • SHA512

      4cec8b51534e1f1b18c72dc22f9638394a12b91e3060708981db633cd5704e5116cbd826947949dd24d4b2953365938a00a0e77cf7630cc2af80f5232bb3c9ed

    • SSDEEP

      12288:rkMIese06snjBQ+H7Ab/rGIkQos6qcJWe8RI6srnycVP/oM:kTnjB1HQ/rGIkQJLcJiRIl7y6P/oM

    Score
    8/10
    macromacro_on_action

    • Office macro that triggers on suspicious action

      Office document macro which triggers in special circumstances - often malicious.

      macromacro_on_action
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks