Overview

overview

10

Static

static

8

Reto2_JC.doc

windows7-x64

10

Reto2_JC.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Reto2_JC.doc

  • Size

    3.8MB

  • Sample

    230901-tsbqlsgc32

  • MD5

    f4667ca5fac716c70bcbaced462afcaa

  • SHA1

    cee697fea379bc943e84f9039774fb6a099e55a4

  • SHA256

    955a8b16580073d00b10e5b39c57f854e3b68f05b31438fae0f8772699e3e9c1

  • SHA512

    65af8f29c7688553f628d22f35df6675662439984cb41945701ca930fc7f53d0df1c7bb322ba2a6dba633f629496774ea6b4aa889855712d628ae85165d3b4da

  • SSDEEP

    24576:0spE3g4UARWtVlmyk50PGNEsbdB1RkvfSh7LLluHmAD2tlw/6S7RWgzbPUzh8WeW:0spdnRm0e6b6oHQlKxM1z8ZPsOrQs

Score
10/10
macromacro_on_action

Malware Config

Targets

    • Target

      Reto2_JC.doc

    • Size

      3.8MB

    • MD5

      f4667ca5fac716c70bcbaced462afcaa

    • SHA1

      cee697fea379bc943e84f9039774fb6a099e55a4

    • SHA256

      955a8b16580073d00b10e5b39c57f854e3b68f05b31438fae0f8772699e3e9c1

    • SHA512

      65af8f29c7688553f628d22f35df6675662439984cb41945701ca930fc7f53d0df1c7bb322ba2a6dba633f629496774ea6b4aa889855712d628ae85165d3b4da

    • SSDEEP

      24576:0spE3g4UARWtVlmyk50PGNEsbdB1RkvfSh7LLluHmAD2tlw/6S7RWgzbPUzh8WeW:0spdnRm0e6b6oHQlKxM1z8ZPsOrQs

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks