180f5a0f9210698b54dcafb9a230b12e3eaf199889e5377a2acb7124c2d48d69 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

translate.rtf

windows7-x64

8

translate.rtf

windows10-2004-x64

1

Sharing

General

Target

translate.res
Size

277KB
Sample

230530-l2ejvshb9y
MD5

92d994be99ea43c121ac4f4ddfacbf75
SHA1

f14afd2856dab6183150f6e269f5bb6f4a2e3f50
SHA256

180f5a0f9210698b54dcafb9a230b12e3eaf199889e5377a2acb7124c2d48d69
SHA512

15582d1abff3b31bbd0dce88a6460ead829946ec251872ad9ad68ea75789bae9a87edbdd2bdd095739fae06734dcf62a02d3a8331d034d41741c93487d27bc01
SSDEEP

6144:HPALkJvxKZ1cQ4HbvOcwIOZLx0fVZiiGP4kz2Vo:HPALkJvE34H7bL44kSS

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

translate.rtf

Resource

win7-20230220-en

windows7-x64

13 signatures

1800 seconds

Behavioral task

behavioral2

Sample

translate.rtf

Resource

win10v2004-20230220-en

windows10-2004-x64

5 signatures

1800 seconds

Malware Config

Targets

- Target
  
  translate.res
- Size
  
  277KB
- MD5
  
  92d994be99ea43c121ac4f4ddfacbf75
- SHA1
  
  f14afd2856dab6183150f6e269f5bb6f4a2e3f50
- SHA256
  
  180f5a0f9210698b54dcafb9a230b12e3eaf199889e5377a2acb7124c2d48d69
- SHA512
  
  15582d1abff3b31bbd0dce88a6460ead829946ec251872ad9ad68ea75789bae9a87edbdd2bdd095739fae06734dcf62a02d3a8331d034d41741c93487d27bc01
- SSDEEP
  
  6144:HPALkJvxKZ1cQ4HbvOcwIOZLx0fVZiiGP4kz2Vo:HPALkJvE34H7bL44kSS
Score

8^/10
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy