739a04027cec7a22c5e9b9fdb0553f2670d79ae391199635982a30ffcfb19198 | Triage

Sharing

General

Target

739a04027cec7a22c5e9b9fdb0553f2670d79ae391199635982a30ffcfb19198.doc
Size

30KB
Sample

230808-h9kjasbb96
MD5

1cc038dc09e9ecbd7b1a5cb6590f3d9b
SHA1

2e3006dcb8bb9512c7e3c5944c6b63ccbce4a68e
SHA256

739a04027cec7a22c5e9b9fdb0553f2670d79ae391199635982a30ffcfb19198
SHA512

2db80d90a0f303cfc15a8365e596c71402afa1c69e5a7e398c3580774ec31527b5854fe081006e3950a6b1d242715aa6714a0831669f98507422d750b957af59
SSDEEP

768:Q/9GQuF5JL8CJaiT45rj+Gl7YNkq+zOn4kk:Q1GQu5h8CJai8517YqFok

Score

10^/10

Malware Config

Extracted

Language

hta

Source

URLs

hta.dropper

https://iplogger.com/laprivora.mp4

Targets

- Target
  
  739a04027cec7a22c5e9b9fdb0553f2670d79ae391199635982a30ffcfb19198.doc
- Size
  
  30KB
- MD5
  
  1cc038dc09e9ecbd7b1a5cb6590f3d9b
- SHA1
  
  2e3006dcb8bb9512c7e3c5944c6b63ccbce4a68e
- SHA256
  
  739a04027cec7a22c5e9b9fdb0553f2670d79ae391199635982a30ffcfb19198
- SHA512
  
  2db80d90a0f303cfc15a8365e596c71402afa1c69e5a7e398c3580774ec31527b5854fe081006e3950a6b1d242715aa6714a0831669f98507422d750b957af59
- SSDEEP
  
  768:Q/9GQuF5JL8CJaiT45rj+Gl7YNkq+zOn4kk:Q1GQu5h8CJai8517YqFok
Score

10^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2