Overview

overview

4

Static

static

1

bc9774804c...b3.rtf

windows7-x64

4

bc9774804c...b3.rtf

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/08/2023, 02:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    bc9774804cbf9c9b994b0379c78ec2b3.rtf

  • Size

    53KB

  • MD5

    bc9774804cbf9c9b994b0379c78ec2b3

  • SHA1

    1c05afde402fed521257475a53f7fc782cddbbe1

  • SHA256

    041afb2745c2fc431a3617df448eb7ef5ebbe6ea8f6392b8c11928205f9f40fc

  • SHA512

    5ee7fd1078f9dd7e95a373944ffe3c59823d49ce46fe8419dfb008e089b9763fa76837e04d77ef7d8ed0749fff807a973fc4aeeae53f12275e4d691de4e94002

  • SSDEEP

    768:ZeX1/30Xj3TOGT9Bz2E262Duj2Ajn8l/NLoJ0o:ZeXeXjnDJbEHo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 2 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\bc9774804cbf9c9b994b0379c78ec2b3.rtf" /o ""
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:1084

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1084-133-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-134-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-136-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-135-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-138-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-139-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-140-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-141-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-137-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-142-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-143-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-144-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-146-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-145-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-147-0x00007FFC37BB0000-0x00007FFC37BC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-148-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-149-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-150-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-151-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-152-0x00007FFC37BB0000-0x00007FFC37BC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-157-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-158-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-159-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1084-181-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-182-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-183-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-184-0x00007FFC3A1F0000-0x00007FFC3A200000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1084-185-0x00007FFC7A170000-0x00007FFC7A365000-memory.dmp

          Filesize

          2.0MB

          Download