5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e | Triage

Submit
Reports

Overview

overview

8

Static

static

1

5b7ff99c95...6e.exe

windows7-x64

8

5b7ff99c95...6e.exe

windows10-2004-x64

8

Sharing

General

Target

5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e
Size

550KB
Sample

230319-enrtpseg57
MD5

f955416a22928eb08bff910bc34fb920
SHA1

256721c9990152c749ef8f4f051e3999c2ec85e7
SHA256

5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e
SHA512

b1b979d3cb68ebdfc226fd1a799ff3f3a833026e77eb89caa251624571678aad8d9d35924fa7527491f765b78e4cd2507bdcb093b54edecfbf5feccb848231fb
SSDEEP

12288:KSRhpHuPu7JQXCTWc22je8qH4iHdraa6/0NZ443dXq9s:KshpSW/22je8qH4iHxHM0NZnV

Score

8^/10

macro macro_on_action

Static task

static1

Behavioral task

behavioral1

Sample

5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e.exe

Resource

win7-20230220-en

macro macro_on_action

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e.exe

Resource

win10v2004-20230220-en

macro macro_on_action

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e
- Size
  
  550KB
- MD5
  
  f955416a22928eb08bff910bc34fb920
- SHA1
  
  256721c9990152c749ef8f4f051e3999c2ec85e7
- SHA256
  
  5b7ff99c955fa55f1f884a09a912b64f5a1aea40caed0cdf86d0ebe4fe45a06e
- SHA512
  
  b1b979d3cb68ebdfc226fd1a799ff3f3a833026e77eb89caa251624571678aad8d9d35924fa7527491f765b78e4cd2507bdcb093b54edecfbf5feccb848231fb
- SSDEEP
  
  12288:KSRhpHuPu7JQXCTWc22je8qH4iHdraa6/0NZ443dXq9s:KshpSW/22je8qH4iHxHM0NZnV
Score

8^/10

macro macro_on_action
- Office macro that triggers on suspicious action
  Office document macro which triggers in special circumstances - often malicious.
  macro macro_on_action
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

macromacro_on_action

behavioral2

macromacro_on_action

© 2018-2024

Terms | Privacy