cbd47a384b39f793539e45c67dccebd52da0a0db7463ac6280d30889f1c1a823

Resubmissions

02-08-2023 20:07

230802-yv9gwaah9s 8

02-08-2023 20:04

230802-ytgepsah8v 8

Analysis

max time kernel
140s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
02-08-2023 20:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

idbk6758400000000000#########534400000000000#59t00000.rtf
Size

32KB
MD5

7eb05bcc9d2d6f3edaa773d3d602b1a1
SHA1

7a18c0ae8230636baa80cf57a142c15268cd60bf
SHA256

cbd47a384b39f793539e45c67dccebd52da0a0db7463ac6280d30889f1c1a823
SHA512

00f1c76d5c33f5423a83494cb13bc67c91f408711a7d0a30710d576e2f2429943682de198f720b8da3d54d1a5407ed270f12f79893da36e985d79edc49c0c038
SSDEEP

768:MriCXz3A4/j6USc2ci0qSZ2UdbRBZjgVnLQfjVNGxo42vY6:M7jlbwcBjPdVjgBx9il

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
3196	WINWORD.EXE
3196	WINWORD.EXE

Suspicious use of SetWindowsHookEx 8 IoCs

pid	Process
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE
3196	WINWORD.EXE

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\idbk6758400000000000#########534400000000000#59t00000.rtf" /o ""
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:3196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3196-133-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-134-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-135-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-138-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-140-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-137-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-139-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-136-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-142-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-141-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-143-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-144-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-145-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-146-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-147-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-148-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-149-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-150-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-151-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-152-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-153-0x00007FFA0C5D0000-0x00007FFA0C5E0000-memory.dmp

Filesize
64KB

Download
memory/3196-154-0x00007FFA0C5D0000-0x00007FFA0C5E0000-memory.dmp

Filesize
64KB

Download
memory/3196-158-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-159-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-160-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download
memory/3196-186-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-187-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-188-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-189-0x00007FFA0E8D0000-0x00007FFA0E8E0000-memory.dmp

Filesize
64KB

Download
memory/3196-190-0x00007FFA4E850000-0x00007FFA4EA45000-memory.dmp

Filesize
2.0MB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads