Overview

overview

10

Static

static

1

RJILLARCHI...a.docx

windows7-x64

4

RJILLARCHI...a.docx

windows10-2004-x64

1

RJILLARCHI...df.lnk

windows7-x64

3

RJILLARCHI...df.lnk

windows10-2004-x64

10

Analysis

  • max time kernel
    140s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/08/2023, 18:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RJILLARCHIVE2021/Old Data.docx

  • Size

    6.9MB

  • MD5

    46143bce10da8d47bb3338b35ca17082

  • SHA1

    71cd7e0fdbe8803d76d926feee67cc2aaea62a2f

  • SHA256

    7b4d1a7298103997022d7d76318ccc71da73c1d0d6234808ab4f606761781585

  • SHA512

    07e6ec56f2f60408a7cb43c40e4a269bdd1f4f1ca6607e74b51bd55d068f3c69d75ae05b2be9645397199a7a598a477857681eea5b75a230a037ef7d5d69bd4c

  • SSDEEP

    98304:sgujycLbnPnghZBYQQPLjzJzoGpCaPxCMxAqvjnknIJOS28FCRNUQP0ahrXUyPku:sgKIhPYpTXxxZknaOgFA0fUkRh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 2 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\RJILLARCHIVE2021\Old Data.docx" /o ""
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2980-0-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-1-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-2-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-4-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-3-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-5-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-6-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-7-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-8-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-9-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-10-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-11-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-12-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-13-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-15-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-14-0x00007FFAD7BF0000-0x00007FFAD7C00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-16-0x00007FFAD7BF0000-0x00007FFAD7C00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-23-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-24-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-25-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-26-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-27-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-28-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-30-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-29-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-31-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-32-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-33-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-34-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-35-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-37-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-38-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-36-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-39-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-59-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-60-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-61-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-63-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-64-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2980-62-0x00007FFAD9D50000-0x00007FFAD9D60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2980-65-0x00007FFB19CD0000-0x00007FFB19EC5000-memory.dmp

    Filesize

    2.0MB

    Download