f17f6ae98be61757a66441d0289c524f8dee95f0bdc18ee2e21171c2ab163807 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

VGM Oswald...__.rtf

windows7-x64

8

VGM Oswald...__.rtf

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

Target

VGM Oswald Bros order2023.doc__.rtf
Size

35KB
Sample

230211-lkbrmseb77
MD5

a214d1b36053f78b30ea05140819e6ca
SHA1

bf8eb73dc5e2b737c6961075b900c96f1616c9c2
SHA256

f17f6ae98be61757a66441d0289c524f8dee95f0bdc18ee2e21171c2ab163807
SHA512

e488994f8b8e6590d8c30d29984c10f9feb826347f3a8740675ba9b46e95ea8256a665ea7b065c4c8fdaec131535a4d819e1740568999c37de0e31e104f0e090
SSDEEP

768:yFx0XaIsnPRIa4fwJMATYpyR84uglyIobuWmFLWLhhBbzS9:yf0Xvx3EMATYpCQIo6WVLrFS9

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

VGM Oswald Bros order2023.doc__.rtf

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

VGM Oswald Bros order2023.doc__.rtf

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  VGM Oswald Bros order2023.doc__.rtf
- Size
  
  35KB
- MD5
  
  a214d1b36053f78b30ea05140819e6ca
- SHA1
  
  bf8eb73dc5e2b737c6961075b900c96f1616c9c2
- SHA256
  
  f17f6ae98be61757a66441d0289c524f8dee95f0bdc18ee2e21171c2ab163807
- SHA512
  
  e488994f8b8e6590d8c30d29984c10f9feb826347f3a8740675ba9b46e95ea8256a665ea7b065c4c8fdaec131535a4d819e1740568999c37de0e31e104f0e090
- SSDEEP
  
  768:yFx0XaIsnPRIa4fwJMATYpyR84uglyIobuWmFLWLhhBbzS9:yf0Xvx3EMATYpCQIo6WVLrFS9
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy