ee2d6c19861f5b8c94657284c2826aca0da64a75c10e369f0f93cd9d9d124f4f | Triage

Submit
Reports

Overview

overview

8

Static

static

1

RFQ- ORDER...12.rtf

windows7-x64

8

RFQ- ORDER...12.rtf

windows10-2004-x64

1

Sharing

General

Target

RFQ- ORDER #SMU68312.doc
Size

1.1MB
Sample

231014-ec9kdaeg7v
MD5

35571d4b9b3317c166365df3d3c70ed4
SHA1

8541741e240ed8ca368096be7bf4217aef0b2452
SHA256

ee2d6c19861f5b8c94657284c2826aca0da64a75c10e369f0f93cd9d9d124f4f
SHA512

e966829779bfd3c8760f5dcf2bd90744d6daa5f32a44d0067629f3e1c9bad0d1e5d26cd18b9b0814141b925a9dea644c3393157132df2dee6e48e5ba36299663
SSDEEP

24576:jeuAmn1KG117qs546ZdsJ1VQ8gJMfbt5dCv9OqGRYNwuqTPYFg47nw6W:G

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

RFQ- ORDER #SMU68312.rtf

Resource

win7-20230831-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

RFQ- ORDER #SMU68312.rtf

Resource

win10v2004-20230915-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  RFQ- ORDER #SMU68312.doc
- Size
  
  1.1MB
- MD5
  
  35571d4b9b3317c166365df3d3c70ed4
- SHA1
  
  8541741e240ed8ca368096be7bf4217aef0b2452
- SHA256
  
  ee2d6c19861f5b8c94657284c2826aca0da64a75c10e369f0f93cd9d9d124f4f
- SHA512
  
  e966829779bfd3c8760f5dcf2bd90744d6daa5f32a44d0067629f3e1c9bad0d1e5d26cd18b9b0814141b925a9dea644c3393157132df2dee6e48e5ba36299663
- SSDEEP
  
  24576:jeuAmn1KG117qs546ZdsJ1VQ8gJMfbt5dCv9OqGRYNwuqTPYFg47nw6W:G
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy