Overview

overview

1

Static

static

1

diagnostic.docx

windows10-1703-x64

1

Analysis

  • max time kernel
    101s
  • max time network
    105s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    23/05/2023, 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    diagnostic.docx

  • Size

    10KB

  • MD5

    a9051516048bd83167c8fc0efa1144cc

  • SHA1

    40fb84973938c79e01dec92ce398476bd0a0fc77

  • SHA256

    ddba84bc71ff167194f23bc479d99d1140247c882fe91bf74eb85c7d7786d791

  • SHA512

    ea94a3d2e0e94470147912840fb1454e2969a7440e5a82deae849f54d06f67ac325b84dd721dd53e8a0191bc8fe8dde6bad9f33b83ab601e1d803b37c89c8b08

  • SSDEEP

    192:QEhMM7Z/c+8poF1d3jvvtlm9264wpBXGheyb8khNrGxjP/nmLfIUUC3eBI:QqZcfa7pr1lm92hwfGAyb1fyxjP/mLf7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 2 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\diagnostic.docx" /o ""
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:1060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1060-121-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-122-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-123-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-124-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-127-0x00007FF97CF10000-0x00007FF97CF20000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-128-0x00007FF97CF10000-0x00007FF97CF20000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-328-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-329-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-330-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1060-331-0x00007FF9807D0000-0x00007FF9807E0000-memory.dmp

    Filesize

    64KB

    Download