Overview

overview

10

Static

static

10

7dcbd34116...2.docx

windows7-x64

7

7dcbd34116...2.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7dcbd34116b44f88962e2de72.docx

  • Size

    10KB

  • Sample

    230704-p6mykseg4x

  • MD5

    291f6887bdaf248c7f0cdc9e2c9515cb

  • SHA1

    1c2261c006530967ab2f79684bb86aeb35861369

  • SHA256

    7dcbd34116b44f88962e2de72a92849304804fa5141513a35a023f5ab510b3bf

  • SHA512

    e0fdfc1fde7b9ed23ea526f5d8aec9e3fdd29fdb259547fef2a7930f89ba8f6cb829eb43aefa23c19789041913610fd0fe37d18eae24a4ccb4d36fa4e5bfcc97

  • SSDEEP

    192:ScIMmtP5hG/b7XN+eOxO+5+5F7Jar/YEChI3lU5:SPXRE7XtOx7wtar/YECO+

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://dgdf000000ghfjfgh000000fghfghg0000000fhfghfg000000sdgfggdf00000gdfge00000rtdfgdf00000gdfg@647601465/56.doc

Targets

    • Target

      7dcbd34116b44f88962e2de72.docx

    • Size

      10KB

    • MD5

      291f6887bdaf248c7f0cdc9e2c9515cb

    • SHA1

      1c2261c006530967ab2f79684bb86aeb35861369

    • SHA256

      7dcbd34116b44f88962e2de72a92849304804fa5141513a35a023f5ab510b3bf

    • SHA512

      e0fdfc1fde7b9ed23ea526f5d8aec9e3fdd29fdb259547fef2a7930f89ba8f6cb829eb43aefa23c19789041913610fd0fe37d18eae24a4ccb4d36fa4e5bfcc97

    • SSDEEP

      192:ScIMmtP5hG/b7XN+eOxO+5+5F7Jar/YEChI3lU5:SPXRE7XtOx7wtar/YECO+

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks