Overview

overview

8

Static

static

8

75f75ed44d...bf.doc

windows7-x64

4

75f75ed44d...bf.doc

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    75f75ed44d8dcb152ccc74ee554288bf

  • Size

    35KB

  • Sample

    230125-j2mt5aha8z

  • MD5

    75f75ed44d8dcb152ccc74ee554288bf

  • SHA1

    7bb385764032b60fdd4182e97a0c2577043c7e80

  • SHA256

    d8372a3d08f3769d4949537c169e307758ddabcb6ce07795b492af6ce6206738

  • SHA512

    d36486b4dd46e76490937214f61ae99984fddfce2e95a94484e9e274afc1a24c764eff656c61e53802c4c64906fd1f746cf61c40c28c78e42dcf7d228bf6ff7f

  • SSDEEP

    384:lT8iSsqdg1vA9dXmAdcDA0jM9bAjG+p1/WItp/:lI+1o9ROs5bAC+p

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      75f75ed44d8dcb152ccc74ee554288bf

    • Size

      35KB

    • MD5

      75f75ed44d8dcb152ccc74ee554288bf

    • SHA1

      7bb385764032b60fdd4182e97a0c2577043c7e80

    • SHA256

      d8372a3d08f3769d4949537c169e307758ddabcb6ce07795b492af6ce6206738

    • SHA512

      d36486b4dd46e76490937214f61ae99984fddfce2e95a94484e9e274afc1a24c764eff656c61e53802c4c64906fd1f746cf61c40c28c78e42dcf7d228bf6ff7f

    • SSDEEP

      384:lT8iSsqdg1vA9dXmAdcDA0jM9bAjG+p1/WItp/:lI+1o9ROs5bAC+p

    Score
    6/10

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks