8bd21ab9f2d803c42400fef8bafc367948edfa739a47dd399acee4c69e951769

Analysis

max time kernel
37s
max time network
39s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
16-08-2023 11:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Протокол розбіжностей д о договору Поставки_това рів_.docx
Size

249KB
MD5

f9a41f7acff7282f9afe3b0d1d94379c
SHA1

acee2ae08858d22b4778d577ee582c337ece57b0
SHA256

8bd21ab9f2d803c42400fef8bafc367948edfa739a47dd399acee4c69e951769
SHA512

cf95b4a9e87ba98ed9c9d69abbc7589736d83ad1a0bbf7a102983364972c7944f1b01e1c321149adcda9de751658eef3182e392444777de140b670b9d1e18742
SSDEEP

3072:5H7/MCFcTtf6110vmSDG611+FEwN026P1lKLnYWBf:qC+FmSDwFA26Pu

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
2656	WINWORD.EXE
2656	WINWORD.EXE

Suspicious use of SetWindowsHookEx 11 IoCs

pid	Process
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE
2656	WINWORD.EXE

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\Протокол розбіжностей д о договору Поставки_това рів_.docx" /o ""
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2656-133-0x00007FF8E16D0000-0x00007FF8E16E0000-memory.dmp

Filesize
64KB

Download
memory/2656-134-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-135-0x00007FF8E16D0000-0x00007FF8E16E0000-memory.dmp

Filesize
64KB

Download
memory/2656-137-0x00007FF8E16D0000-0x00007FF8E16E0000-memory.dmp

Filesize
64KB

Download
memory/2656-136-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-138-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-139-0x00007FF8E16D0000-0x00007FF8E16E0000-memory.dmp

Filesize
64KB

Download
memory/2656-141-0x00007FF8E16D0000-0x00007FF8E16E0000-memory.dmp

Filesize
64KB

Download
memory/2656-140-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-142-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-143-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-144-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-145-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-146-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-147-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-148-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-149-0x00007FF8DF0E0000-0x00007FF8DF0F0000-memory.dmp

Filesize
64KB

Download
memory/2656-150-0x00007FF8DF0E0000-0x00007FF8DF0F0000-memory.dmp

Filesize
64KB

Download
memory/2656-159-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-160-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download
memory/2656-161-0x00007FF921650000-0x00007FF921845000-memory.dmp

Filesize
2.0MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads