72e09b104ae55088b5093f2ff7310e55897aaa88243b1ada3337d8e8e7250765 | Triage

Resubmissions

05/01/2023, 13:12

230105-qf1mesca68 7

05/01/2023, 12:56

230105-p6t2wsca39 7

Sharing

General

Target

DOCS-09890127.bin.zip
Size

429KB
Sample

230105-p6t2wsca39
MD5

8a47a3a7e77af82162177fb85accf593
SHA1

4ec9b24fa03c2f5f3328825aa08db21948f17cf6
SHA256

72e09b104ae55088b5093f2ff7310e55897aaa88243b1ada3337d8e8e7250765
SHA512

316cab21c2fd77ecf5a61ba6cdbf1e2d1fed33d19ef5dcf52a555f70ab8f5145b9c6ca80989a7ebdf2308ac1ba7b50710d756a5dba6f3f5bd333cbc2c394c83f
SSDEEP

12288:lBOvYgBGyka3I3H6duIon5M7IDFlzZEMkWj6TFE:lAgoGJxeuz5AW8oKq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  DOCS-09890127.bin
- Size
  
  515KB
- MD5
  
  bae85dfb0364beb6de1e1a9c0f436c4a
- SHA1
  
  5ab7ba33f3cc3f34f5835c93e1ee6192e5c95d04
- SHA256
  
  10129b85199140c0eafa83833d1acb2568afa45f528fd6da4d4bf7911d5a261e
- SHA512
  
  dc984417e5c334b378049b98701455e8f3d4d44e17828f8d12c497e4e76aaebbb5f983a4afa7f24cbffeda781cb0ecba909161adf1bce8aa7e984d9405073c24
- SSDEEP
  
  12288:rprR1oRft3JFC/JSrnmvmd8lV+YZfxWeMjROIF:rprR1oRtnC/k6vmd8bfZ5ZM1bF
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2