Overview

overview

8

Static

static

1

Inquiry.docx

windows7-x64

8

Inquiry.docx

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Inquiry.docx

  • Size

    10KB

  • Sample

    230718-madnxsac8y

  • MD5

    82f2ab8db7d2ad671478e0a925d99c76

  • SHA1

    c89965df875b405bcf3391d6b057af091ec80010

  • SHA256

    7137e863f0c972af8aae99cb8b8743441330952294bf504d4ea175c8381a2892

  • SHA512

    08ab972ac8a2dde07ae8397857f402c987b01072ad347c216f18fadb4fcfea4da27c35c2e8034acb23bf6190c633475406b355d549a5016cbb93c544814b535b

  • SSDEEP

    192:pya0NXu2QWzARgZVPCK44AG9xXSJ+Ej7jJY1fKw4K5A7WYBcWe3maM2U:pyXXu2QWzANK4499xXSJf7jJYppVYBBx

Score
8/10

Malware Config

Targets

    • Target

      Inquiry.docx

    • Size

      10KB

    • MD5

      82f2ab8db7d2ad671478e0a925d99c76

    • SHA1

      c89965df875b405bcf3391d6b057af091ec80010

    • SHA256

      7137e863f0c972af8aae99cb8b8743441330952294bf504d4ea175c8381a2892

    • SHA512

      08ab972ac8a2dde07ae8397857f402c987b01072ad347c216f18fadb4fcfea4da27c35c2e8034acb23bf6190c633475406b355d549a5016cbb93c544814b535b

    • SSDEEP

      192:pya0NXu2QWzARgZVPCK44AG9xXSJ+Ej7jJY1fKw4K5A7WYBcWe3maM2U:pyXXu2QWzANK4499xXSJf7jJYppVYBBx

    Score
    8/10

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Abuses OpenXML format to download file from external location

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks