5af1fee5b535a306c5a9dbd6781695050815998a00019b656f4a497adf46aba8 | Triage

Submit
Reports

Overview

overview

Static

static

COMMERCIAL...C.docx

windows7-x64

7

COMMERCIAL...C.docx

windows10-2004-x64

1

Resubmissions

25-01-2023 18:56

230125-xltvdsbb7t 10

23-10-2020 13:35

201023-rv2tdkdhkx 10

Sharing

General

Target

COMMERCIAL INVOICE, BILL OF LADING, ETC DOC.docx
Size

11KB
Sample

230125-xltvdsbb7t
MD5

efec6eeb3c8e81565b87ff8b1d5289ad
SHA1

5875d0782fc2170bfeb949bdd48d6a32a40d950f
SHA256

5af1fee5b535a306c5a9dbd6781695050815998a00019b656f4a497adf46aba8
SHA512

3c42d6602e09965074b27d114d701dfdbb7fa5d6733fd0dc570ea0bb0ad7cb9575a1a2411d0efc6e5cbcef28d92aea65e041862c0bc7e4aa90a85608f44e050a
SSDEEP

192:CtNCWUyn0i13pNXqkOcPiYFLwzvdX6Ptpwjnw+umHBCZVC:aNxUyn0i13LROEiOLkX6Ujnw+3qVC

Score

10^/10

websettings

Static task

static1

Behavioral task

behavioral1

Sample

COMMERCIAL INVOICE, BILL OF LADING, ETC DOC.docx

Resource

win7-20221111-en

windows7-x64

8 signatures

1800 seconds

Behavioral task

behavioral2

Sample

COMMERCIAL INVOICE, BILL OF LADING, ETC DOC.docx

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

1800 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

http://107.173.219.115/document.doc

Targets

- Target
  
  COMMERCIAL INVOICE, BILL OF LADING, ETC DOC.docx
- Size
  
  11KB
- MD5
  
  efec6eeb3c8e81565b87ff8b1d5289ad
- SHA1
  
  5875d0782fc2170bfeb949bdd48d6a32a40d950f
- SHA256
  
  5af1fee5b535a306c5a9dbd6781695050815998a00019b656f4a497adf46aba8
- SHA512
  
  3c42d6602e09965074b27d114d701dfdbb7fa5d6733fd0dc570ea0bb0ad7cb9575a1a2411d0efc6e5cbcef28d92aea65e041862c0bc7e4aa90a85608f44e050a
- SSDEEP
  
  192:CtNCWUyn0i13pNXqkOcPiYFLwzvdX6Ptpwjnw+umHBCZVC:aNxUyn0i13LROEiOLkX6Ujnw+3qVC
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy