Overview

overview

10

Static

static

10

RFQ_AVP222...0.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RFQ_AVP2220707-400.docx

  • Size

    10KB

  • Sample

    230311-kklq6sha43

  • MD5

    04b98040a0abddb9de98a686e2d02d7f

  • SHA1

    43378fdd16c832184e2c0995f914eab593c626d6

  • SHA256

    79d91878f633c8ea57123c52fb93981230d5ceb3df16ed3897ffbeffab430fac

  • SHA512

    59fe133067735c4a60ba429dc6630a1c1cfc2f94dc3f39187136bad3cd278834d8b21c001f771befef730172766e55c02282fdc70651a5a6700ed47ce39b0168

  • SSDEEP

    192:ScIMmtP1aIG/bslPL++uOrlWl+CVWBXJC0c3Fp:SPXU/slT+LOUHkZC9P

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://yyyyyYYYYUUSUUUUUUU3243242UUU23U423U4UU2UWWWWW8W8W7W8WWWWWWW878W8W8WW78WWWW87W87W88WEEW787888W88W8W@1806685202/ru.................................doc

Targets

    • Target

      RFQ_AVP2220707-400.docx

    • Size

      10KB

    • MD5

      04b98040a0abddb9de98a686e2d02d7f

    • SHA1

      43378fdd16c832184e2c0995f914eab593c626d6

    • SHA256

      79d91878f633c8ea57123c52fb93981230d5ceb3df16ed3897ffbeffab430fac

    • SHA512

      59fe133067735c4a60ba429dc6630a1c1cfc2f94dc3f39187136bad3cd278834d8b21c001f771befef730172766e55c02282fdc70651a5a6700ed47ce39b0168

    • SSDEEP

      192:ScIMmtP1aIG/bslPL++uOrlWl+CVWBXJC0c3Fp:SPXU/slT+LOUHkZC9P

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks