Overview

overview

8

Static

static

1

bookingCon...on.rtf

windows7-x64

8

bookingCon...on.rtf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5507C0CFDEF74008327B9DAE6339F3261D701E9CE05CFB653AFF7747204D59A9

  • Size

    48KB

  • Sample

    230518-ccp5maha46

  • MD5

    139b2729b7e5a3406163c4f7db627b42

  • SHA1

    26fd45009a4e9b16bec46d5ea746fc533eaee030

  • SHA256

    5507c0cfdef74008327b9dae6339f3261d701e9ce05cfb653aff7747204d59a9

  • SHA512

    daeff027d395837fe367a84f908f59046315c2ed536a9801ca37bd4b83a1662419ad437decf5609c335125222412f3aef8b30648c39cbc49ddc48bc825fe496f

  • SSDEEP

    768:AgN8wuETLrQ1eXl2IjuoyBx7qfWReG23yLLuQSZMp/CfjHijGjh3OLfm7:A0dbTLEM0I6nBVq++fEIJH

Score
8/10

Malware Config

Targets

    • Target

      bookingConfirmation.doc

    • Size

      34KB

    • MD5

      d490c4a441638cd9ada38aaa094e3797

    • SHA1

      a4cca5317fb7b4e50c644bf0dba6c41344358516

    • SHA256

      d865f9241096571107aead91f5e3e01910d0e79c2e1aa127497a1201d2eede83

    • SHA512

      4a9a56ee5ca79c64f6302d81e24129ea138c7363f461661137f55ec7f121c5e7b87267f53b5dcd5495e39a22d174b8d0160a969114443ee353f20e265d3b6741

    • SSDEEP

      768:WFx0XaIsnPRIa4fwJM+AWMEGFwgKpAhvocAVA7a10TeBONE2T/OM:Wf0Xvx3EM+AWIKpLLmTHP

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks