General

  • Target

    3D2383F5C9472C92CB1C24F28D46D9959A2C03382CDC09A41C0732DCD3CAAE9F

  • Size

    10KB

  • Sample

    230518-rxvceace86

  • MD5

    696658e8bd6141fe2045b504babc619b

  • SHA1

    e03616792372b69cc77910ec4adff5ce3d7aec5c

  • SHA256

    3d2383f5c9472c92cb1c24f28d46d9959a2c03382cdc09a41c0732dcd3caae9f

  • SHA512

    f35dc7c43320741cbcbb960d856fe008a131679686fdbdae6db10a1fcbdad013090863a2aedd7b4678179fe6cfbd6cda572fe2467c54cf861789f41c3ae10fb3

  • SSDEEP

    192:ScIMmtP0xfUW70vG/b3kgOi4Osus+1pReDnc37ZHazG:SPX+si10ni4OuyeDnMsy

Score
10/10

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://qquuuq9werqwqqqq00qwewerSASWERWRWIERIWERIEWIR00R0WEQQQ1QQQ99WER8W9ER9WERWKRJEWKRKWERK@3221448090/O-O-O.DOC

Targets

    • Target

      3D2383F5C9472C92CB1C24F28D46D9959A2C03382CDC09A41C0732DCD3CAAE9F

    • Size

      10KB

    • MD5

      696658e8bd6141fe2045b504babc619b

    • SHA1

      e03616792372b69cc77910ec4adff5ce3d7aec5c

    • SHA256

      3d2383f5c9472c92cb1c24f28d46d9959a2c03382cdc09a41c0732dcd3caae9f

    • SHA512

      f35dc7c43320741cbcbb960d856fe008a131679686fdbdae6db10a1fcbdad013090863a2aedd7b4678179fe6cfbd6cda572fe2467c54cf861789f41c3ae10fb3

    • SSDEEP

      192:ScIMmtP0xfUW70vG/b3kgOi4Osus+1pReDnc37ZHazG:SPX+si10ni4OuyeDnMsy

    Score
    7/10
    • Abuses OpenXML format to download file from external location

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks