aee43496026aadd3bb0884c7fcd200758fde8c35940f0745628f4a0f480923c0 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

Mhd Order ...18.rtf

windows7-x64

8

Mhd Order ...18.rtf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

Mhd Order REF_PO 20230918.doc
Size

92KB
Sample

231012-tyz1dsdf54
MD5

87dc64cd0d2d13f4897619c008540bcb
SHA1

7f191350095893ebc3e1aa0e9e79dc083961e697
SHA256

aee43496026aadd3bb0884c7fcd200758fde8c35940f0745628f4a0f480923c0
SHA512

09e5d4f84ee2da4306cd4ddc97bebec6071b075e236ef861149daf30ae156d7e0b6f6882926eb7e0f841988424e07d283f505d9de4d91955e1f305961b05b755
SSDEEP

768:ewAbZSibMX9gRWjFrOxpo0gcdOSY04ttpVtocQWILLIYGYsTqcmtDU9YHL:ewAlRQKxmidnY04ttpXoeyhGYsVmtYUL

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

Mhd Order REF_PO 20230918.rtf

Resource

win7-20230831-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

Mhd Order REF_PO 20230918.rtf

Resource

win10v2004-20230915-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  Mhd Order REF_PO 20230918.doc
- Size
  
  92KB
- MD5
  
  87dc64cd0d2d13f4897619c008540bcb
- SHA1
  
  7f191350095893ebc3e1aa0e9e79dc083961e697
- SHA256
  
  aee43496026aadd3bb0884c7fcd200758fde8c35940f0745628f4a0f480923c0
- SHA512
  
  09e5d4f84ee2da4306cd4ddc97bebec6071b075e236ef861149daf30ae156d7e0b6f6882926eb7e0f841988424e07d283f505d9de4d91955e1f305961b05b755
- SSDEEP
  
  768:ewAbZSibMX9gRWjFrOxpo0gcdOSY04ttpVtocQWILLIYGYsTqcmtDU9YHL:ewAlRQKxmidnY04ttpXoeyhGYsVmtYUL
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy