0a9a1e88137e6ac94b757c5d99c802ea22e4cf9e570af82598808f22df3479f2 | Triage

Sharing

General

Target

TreePlan-Student-179-Files.zip.7z
Size

1009KB
Sample

231011-v63xpacc9y
MD5

5e83305b6bf803fbf14908004d4957dd
SHA1

cb52636c10a592b942d0847d4267d90c6696da2a
SHA256

0a9a1e88137e6ac94b757c5d99c802ea22e4cf9e570af82598808f22df3479f2
SHA512

60e55599a43cbe95ac60bf970dc3d19789a903f3c6f823c6eca3cabb3d78537f611d63e1f6452cf6f5570e08d08ec275e90af5626260bbfb59e98b5703e28328
SSDEEP

24576:ExllVL+b4WzGCxDkI8npIGpoKUbhtv68JDtB1J0jidYmBZlNq:6vVYtCuklIGpoK8htvBTkj+bb

Score

8^/10

link macro pdf xlm

Malware Config

Targets

- Target
  
  How-To-Install-Addin.pdf
- Size
  
  333KB
- MD5
  
  f623721e1d25fc4cc9d49bb4be2d11ea
- SHA1
  
  42e84297c8420f99c43239714b463c91fed3eccd
- SHA256
  
  1da33f02f009031c0a6dee86db1c9cbaf345d160965fe30e50341a5e0dc5541e
- SHA512
  
  edb95722090d2945af816897a4970ff87078a8fdc30b5c6d27b64d76fdd700476bc8fca48ca07ec56654de40f29030ec3526261b5c674592817b3e6a6a845c29
- SSDEEP
  
  6144:Izon0R15nANg6ZjuGYncqg49AMBYkcqmBY7TKYByLUT01hg7mgUdg6pmyoO:Iknc3nANgdGOeL5g7TXT01ymtxw2
Score

1^/10
behavioral1 behavioral2
- Target
  
  TreePlan-Example-179-Mac-2011.xls
- Size
  
  555KB
- MD5
  
  1b466bb04bcc435c9ca0f3a15a00ef4a
- SHA1
  
  26530c044020b2d6ccdc9a343f13659939981864
- SHA256
  
  3f9c49a904adacb038685be1f22c0f5aad142e496bd71ef9b9bc2305a6f5d5e7
- SHA512
  
  bf8cc8d09eadc5994cdbedf93174c36a44d8d95181a7d22eb9ef0789c3041b8ee49354c45997fa803fd263f6c9ed6a587bec6b49cf571df86a1a3b9546f1efab
- SSDEEP
  
  6144:0mxEtjPOtioVjDGUU1qfDlavx+W2QnAoAzTrBPQQoqLL41hEpjf3zRPV7gw0epQP:0Az/B4Q9YhM73dPVR0epO
Score

1^/10
behavioral3 behavioral4
- Target
  
  TreePlan-Example-179-Win-2010.xls
- Size
  
  284KB
- MD5
  
  dc3b2973ba9b749acddb38c60eb143ed
- SHA1
  
  4bb35a3d94ca90baddb81c9819879416735ccfa5
- SHA256
  
  725a6c1103a647bf1e7b3ce57e5bebf17e9725ffdd96a895dbca1245763e68b3
- SHA512
  
  9ef5e8234b5d5eb067be08d33495f8734d0527808d31762e950798192bb9877c1b05259f82ad849855fd6656972b4bec41950006fbdb18a0ceab53f05e4bfd96
- SSDEEP
  
  6144:71xEtjPOtioVjDGUU1qfDlavx+W2QnA3J7W9uNOI0O0S+KO0vN:ZJ7WgNOHOJOON
Score

1^/10
behavioral5 behavioral6
- Target
  
  TreePlan-Guide-179.pdf
- Size
  
  211KB
- MD5
  
  53bbb7d238f7cc3afe14a2f7a11ad4a3
- SHA1
  
  c585cefde33febe94d9f40fc09b28c654c9916c8
- SHA256
  
  7e157933a048da66906804c016a44b7225a09d0a866908d55d4fe9811075919e
- SHA512
  
  0d33f6ca3932c298e4e496a50cd09e5333e02140720682af8a0c2520eb3bccb8705c8a077479eab2f8ca8500d5716bbb88f679d049099d11ea3243802c9cb33e
- SSDEEP
  
  3072:TkxChG5B4dsFwiLXOaLIA4kj0bh/lJnWi/Dfna9SVrlWsNNU3WtCrn93U/JMmPq:TA5Be4Xbt4CePci/DfSi1HU31rn9WMsq
Score

1^/10
behavioral7 behavioral8
- Target
  
  TreePlan-Student-179-Addin.xla
- Size
  
  369KB
- MD5
  
  a5e024b12168187ba6ddcf8abf229cef
- SHA1
  
  38bef8824fcf99b76f4b366a846d27709c3c838a
- SHA256
  
  8f6c3d5dfdb50e8d6ff3c65e8862e6f9c8e0fc55c306e9e2dcd26f1fe6191b18
- SHA512
  
  3699f0217b606292bd21fa93d8e127b550125b57bc264e8b39109bae57b87c14c654bad33de371e1956ddbc88eb0c9e3a6a045a478b614cdb7a76e2d4e141e9a
- SSDEEP
  
  3072:SGiql1xOStVPSiqJmWKCWGCHZ1yfHX6rbNa0qrpgMvQ0wQ3OdI5tUeTK5pYJ28vv:2rpgMvbrRf6GK0ULe
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

pdflinkmacroxlm

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10