Overview

overview

8

Static

static

8

ロシア...1.doc

windows7-x64

4

ロシア...1.doc

windows10-1703-x64

1

ロシア...1.doc

windows10-2004-x64

1

ロシア...2.docx

windows7-x64

4

ロシア...2.docx

windows10-1703-x64

1

ロシア...2.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9798101491.zip

  • Size

    105KB

  • Sample

    230329-kr3m9shb7y

  • MD5

    6ec0a602faac8dfb4225e8ec82c536e5

  • SHA1

    2b48a0d1018911c2e8b100ec56874605f5ed39f3

  • SHA256

    45a258ec977966baf246992333ac68b4ee7edbf1a9e3fbc2b13b42735165dfc7

  • SHA512

    b09ced845a83f0a74aa276224b4691a783ec05fdaa966395c6298be780ebfe4968f37e2ed404cf41d86a50868b16782a7532ba82a65887b1802db29cc287f0df

  • SSDEEP

    3072:UWwhXO+UAnCMnPhcLE/UnIhTNGq+dYHT6otc:UaenCM5cLpqiG2Ac

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      ロシア・ウクライナ戦争が日本のエネルギーに及ぼす影響-1.doc

    • Size

      200KB

    • MD5

      69dd7fd355d79db0325816569ae2129a

    • SHA1

      c08bf05db87896a15ac1913ac96bd47a35220225

    • SHA256

      526f48c6b3b767c119282e362eeb39238ac3593f7b3742eb08e67cd93d913a44

    • SHA512

      0e1d6c6bb1fda6e81368ed6a8070c5a11f0684f7335eba5f940657581bb4d2bf51bf8c2b474a8916484763ec3af9d122fd5bcf65029e86081a1d71bfa7f963b8

    • SSDEEP

      3072:538nFAJvcOGlU4wTBql1xnsAyt5OJEJp6y:FDBGWJIl1xsAa

    Score
    4/10
    behavioral1behavioral2behavioral3

    • Target

      ロシア・ウクライナ戦争が日本のエネルギーに及ぼす影響-2.docx

    • Size

      14KB

    • MD5

      6533713d37d081fd0c87790bf5a28120

    • SHA1

      97acc2e8447f8a231269ee9c55943d36ebfa748a

    • SHA256

      acd4323b55929ee7cbd46221501c27fa018b4316aa58e970b5e85f8bbca40a86

    • SHA512

      0ccccbe8753f6ee4fd6997f11fe96360831e23f5e51827c0d4dda2dce2f4d048e852d046e0f0b17aa333c034d0d32892c74ceeb257ee675c1a24d8e58224db75

    • SSDEEP

      384:SmxNUrihE76anB/JxmddQuNBmcVHoKkLuU/:NEihE76aB/JxU6upnkLF/

    Score
    4/10
    behavioral4behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Query Registry

5
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks