dcf95ce87d16d010370ebf3328905f2a45e39a776a7c79ffed103b6d976a27d1

Analysis

max time kernel
125s
max time network
133s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
07/08/2023, 06:34

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

test_malus.doc
Size

387KB
MD5

1d99ba53edeff115bdee3d9f87eb1310
SHA1

ea98ebcfe56807bbce79ce797b8963bf87921ea9
SHA256

dcf95ce87d16d010370ebf3328905f2a45e39a776a7c79ffed103b6d976a27d1
SHA512

9148199181e83077b0891ee297da4aa7cb82596c098bed192f154de57e54640bb6b330e5694035d3702698b81b54d893aa40c5a21eef0511f9c1afb7660a314d
SSDEEP

3072:YBfiq0IFmQZb++tdgIm/JFP9wx+vlqf0UxHfITGU+2wFFCcll3H3rH3XD7Inm+Fj:+fiFrQZb++tdsHP4+QfI6U

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
2188	WINWORD.EXE
2188	WINWORD.EXE

Suspicious use of SetWindowsHookEx 7 IoCs

pid	Process
2188	WINWORD.EXE
2188	WINWORD.EXE
2188	WINWORD.EXE
2188	WINWORD.EXE
2188	WINWORD.EXE
2188	WINWORD.EXE
2188	WINWORD.EXE

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\test_malus.doc" /o ""
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Microsoft\UProof\ExcludeDictionaryEN0409.lex

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
memory/2188-148-0x00007FFCCC5D0000-0x00007FFCCC5E0000-memory.dmp

Filesize
64KB

Download
memory/2188-151-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-136-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-137-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-138-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-139-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-140-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-141-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-142-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-143-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-144-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-145-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-146-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-147-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-149-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-134-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-135-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-152-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-150-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-153-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-154-0x00007FFCCC5D0000-0x00007FFCCC5E0000-memory.dmp

Filesize
64KB

Download
memory/2188-158-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-165-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-166-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-168-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-167-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-172-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download
memory/2188-133-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-204-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-205-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-206-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-207-0x00007FFCCE630000-0x00007FFCCE640000-memory.dmp

Filesize
64KB

Download
memory/2188-208-0x00007FFD0E5B0000-0x00007FFD0E7A5000-memory.dmp

Filesize
2.0MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads