Overview

overview

10

Static

static

10

439E399253...9.docx

windows7-x64

7

439E399253...9.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    439E39925309FB7A963870356DABFBCE0478EC334D1BCD597AD9BEEEF31BB0A9

  • Size

    10KB

  • Sample

    230208-v2mpxade64

  • MD5

    1256f6083a62257ba411c719b563c6d4

  • SHA1

    e90827ec9f3889975ea49fa3e32a15a12fc4f586

  • SHA256

    439e39925309fb7a963870356dabfbce0478ec334d1bcd597ad9beeef31bb0a9

  • SHA512

    65147689f7afda87f880105d8e2603ac322998a6adc507c6cc1a92dc254a8962a4fe21917178cb8574dbce23c0d704c1b4ab3b29c6ffb3873344af9f446fe11e

  • SSDEEP

    192:ScIMmtP5hG/b7XN+eOWOO+5+5F7Jar/YEChI3DZR:SPXRE7XtOZ7wtar/YECOf

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://dgd0fgh000fj000fghfg000hfghgfh0000fghfg000sdgfggd000000fgdf000gertdfg0000dfgdfg@647601465/8.doc

Targets

    • Target

      439E39925309FB7A963870356DABFBCE0478EC334D1BCD597AD9BEEEF31BB0A9

    • Size

      10KB

    • MD5

      1256f6083a62257ba411c719b563c6d4

    • SHA1

      e90827ec9f3889975ea49fa3e32a15a12fc4f586

    • SHA256

      439e39925309fb7a963870356dabfbce0478ec334d1bcd597ad9beeef31bb0a9

    • SHA512

      65147689f7afda87f880105d8e2603ac322998a6adc507c6cc1a92dc254a8962a4fe21917178cb8574dbce23c0d704c1b4ab3b29c6ffb3873344af9f446fe11e

    • SSDEEP

      192:ScIMmtP5hG/b7XN+eOWOO+5+5F7Jar/YEChI3DZR:SPXRE7XtOZ7wtar/YECOf

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks