Overview

overview

8

Static

static

1

1799c8fcda...c2.doc

windows7-x64

8

1799c8fcda...c2.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1799c8fcda056ec1bb545f7cca3743c2

  • Size

    51KB

  • Sample

    230314-kqqmbaed94

  • MD5

    1799c8fcda056ec1bb545f7cca3743c2

  • SHA1

    9cbd3ef55ec0044e27ed1f2356990cc766b89ffc

  • SHA256

    d9b52e89476da47de66a850e82e35c63b142633dee8585d6901d6c41dd2ffddd

  • SHA512

    525cc38c6aad0329a3a4d261c94201c53cd62adeb4b80045e30946a0d0a48f91cb87406a17bc2a9889a7a8048429596561ea654554589b32a644939b83c4810c

  • SSDEEP

    384:7+yatEi1aUf5D4YrDzsfyGcSxwAjLWarHOj6eX0jdoutQxOm:Cb9aa58YrDwNfRrI31

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      1799c8fcda056ec1bb545f7cca3743c2

    • Size

      51KB

    • MD5

      1799c8fcda056ec1bb545f7cca3743c2

    • SHA1

      9cbd3ef55ec0044e27ed1f2356990cc766b89ffc

    • SHA256

      d9b52e89476da47de66a850e82e35c63b142633dee8585d6901d6c41dd2ffddd

    • SHA512

      525cc38c6aad0329a3a4d261c94201c53cd62adeb4b80045e30946a0d0a48f91cb87406a17bc2a9889a7a8048429596561ea654554589b32a644939b83c4810c

    • SSDEEP

      384:7+yatEi1aUf5D4YrDzsfyGcSxwAjLWarHOj6eX0jdoutQxOm:Cb9aa58YrDwNfRrI31

    Score
    8/10
    macromacro_on_action

    • Office macro that triggers on suspicious action

      Office document macro which triggers in special circumstances - often malicious.

      macromacro_on_action

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks