4add41d16684def6f4e439f0ce73ca41e4cdc44b0db409ec7495ca282b5e251b | Triage

Sharing

General

Target

SecuriteInfo.com.Exploit.CVE-2018-0798.4.1816.19734.rtf
Size

66KB
Sample

230828-rykjlaef81
MD5

be361f6359d960ec5564594a62085e11
SHA1

f2567fc900b8e840fc35d8426b6af8ee0f039224
SHA256

4add41d16684def6f4e439f0ce73ca41e4cdc44b0db409ec7495ca282b5e251b
SHA512

5c126da2df286b47f8b05cfaa8edd6a3831553dbb671ae6485f2515f1d76281b992859bc052308dee30df60fe97b0f640b60d45501258056fa9b30dab375264b
SSDEEP

1536:6wAlRBn2SOzq5e4vSQSv+L458xvcX0isRp37QoE8Ku59b1VXMC07o9tWK88lkmTr:6wAl+Swwe4vSQSvKCOEX0isrEoE8Ku5n

Score

8^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Exploit.CVE-2018-0798.4.1816.19734.rtf
- Size
  
  66KB
- MD5
  
  be361f6359d960ec5564594a62085e11
- SHA1
  
  f2567fc900b8e840fc35d8426b6af8ee0f039224
- SHA256
  
  4add41d16684def6f4e439f0ce73ca41e4cdc44b0db409ec7495ca282b5e251b
- SHA512
  
  5c126da2df286b47f8b05cfaa8edd6a3831553dbb671ae6485f2515f1d76281b992859bc052308dee30df60fe97b0f640b60d45501258056fa9b30dab375264b
- SSDEEP
  
  1536:6wAlRBn2SOzq5e4vSQSv+L458xvcX0isRp37QoE8Ku59b1VXMC07o9tWK88lkmTr:6wAl+Swwe4vSQSvKCOEX0isrEoE8Ku5n
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2