f03e0df31b16d4dd954918c496a24107c69a6468be1f2703fe56ef1f91118e47

Sharing

Copy URL

Twitter E-mail

General

Target

tragedy_redux
Size

23KB
Sample

231015-yqz3msaa8z
MD5

3abfa64598fb01ce7130bab6f24d4ea8
SHA1

a1d8f1e0613286f279506a1fbd1bdb75c2f27ecc
SHA256

f03e0df31b16d4dd954918c496a24107c69a6468be1f2703fe56ef1f91118e47
SHA512

94340fbf262d32177c94f39ca4e1985b457508ae80ea361341640f1d396f883d65a31b220966ee86a111dd14b79076dfabf3e9967cfa9aa74597439c875489ea
SSDEEP

384:NiLBYSEK0YBM2oK1KUs1IdXJCtmqpwcdSDat2aEkRmhudj/hv/6iMLPj4:NkBYDYM27A8XJC8qpwcdSet0up/ZSiMQ

Score

8^/10

macro macro_on_action

Malware Config

Targets

- Target
  
  tragedy_redux
- Size
  
  23KB
- MD5
  
  3abfa64598fb01ce7130bab6f24d4ea8
- SHA1
  
  a1d8f1e0613286f279506a1fbd1bdb75c2f27ecc
- SHA256
  
  f03e0df31b16d4dd954918c496a24107c69a6468be1f2703fe56ef1f91118e47
- SHA512
  
  94340fbf262d32177c94f39ca4e1985b457508ae80ea361341640f1d396f883d65a31b220966ee86a111dd14b79076dfabf3e9967cfa9aa74597439c875489ea
- SSDEEP
  
  384:NiLBYSEK0YBM2oK1KUs1IdXJCtmqpwcdSDat2aEkRmhudj/hv/6iMLPj4:NkBYDYM27A8XJC8qpwcdSet0up/ZSiMQ
Score

1^/10
behavioral1 behavioral2
- Target
  
  _rels/.rels
- Size
  
  590B
- MD5
  
  77bf61733a633ea617a4db76ef769a4d
- SHA1
  
  9d7abf0ee4effcecad80c8bbfb276079a05b4342
- SHA256
  
  e19238d7a71fa7a2490776252686f70e2de6238c87cd509b5e3a3cc07c2ea4df
- SHA512
  
  4f1d48a8273436dbb710bb5f26bdbb701e6c6346511d6ac2e4c7f92db705fa1332e0a4ef9063dc0886e2e5b8b01ec209f8f99890957fee635177c41b09bbe769
Score

1^/10
behavioral3 behavioral4
- Target
  
  docProps/app.xml
- Size
  
  715B
- MD5
  
  dcea92eaf331727a10ed1cc8adc8b57d
- SHA1
  
  fdc314fc1992a8b36ef3ac96f2f84e7e8d4c37c1
- SHA256
  
  c1cd32d3451667372029ae3ca828938317da9e68bc6689495c2690bc7e16c38e
- SHA512
  
  cc05e2c90a7a3d2e19f30051a4ca5e151800a6155bcda9c22a516368f57ecc58c1a152bbc0e62dfe1915126363ad285e912a86c2501a0aa3521027c3c712b3ca
Score

1^/10
behavioral5 behavioral6
- Target
  
  docProps/core.xml
- Size
  
  751B
- MD5
  
  6c0a63fc585f9bcefe6fdd7a2b91c5fa
- SHA1
  
  810f0659ac86d4308bd2e7bc9b05f210e2025055
- SHA256
  
  da36ca149dfd0e9dfc0252e53a2e144fa2c0e7561f22e84f078ef2e56f54f235
- SHA512
  
  86eaa0edb7d9b1351f87e0b08b72a710d59a55688e48b74736f3150da321a3987f13f3e3c09cde77089cccf41b453f06a51513fe0b9263fab6c2a5430c3db7e7
Score

1^/10
behavioral7 behavioral8
- Target
  
  word/_rels/document.xml.rels
- Size
  
  2KB
- MD5
  
  6d05b1eef06ca8da1b3b0b08d8f1e610
- SHA1
  
  b6bb01068a5ddb31e2d19b7b9d102ce4dde288a2
- SHA256
  
  b42922ec7480a4643244cf7de8bb698e748a86293c50c3f3256f5f8a2d3d788b
- SHA512
  
  9b136ea0fc4056ad0723ccba8096fdc4527a3cbf5e3d93b6d77d4c06eac56913b5b1884e772c872ae51200fbab65b2c1fc0465cc356385a9fadcc1c9bbd49dc8
Score

1^/10
behavioral10 behavioral9
- Target
  
  word/_rels/vbaProject.bin.rels
- Size
  
  277B
- MD5
  
  dd79e6440b0515bfcf771c2c5286a2c8
- SHA1
  
  40dc1e00e2663cb33f8c296cdb0cd52fa07a87b6
- SHA256
  
  c97833e6456aa2bfe9be614f9c3ae41a8ef764b1cc3af92c6a6f273c62309122
- SHA512
  
  461bcf63f03a733208cc31a97c649b5dd4e4af9f8b166e69eea8094ca95c4189f5691d7d3ef4e63ac3ccd8202b46fa9afaeec97a03f99a04205db9ab4ba16148
Score

1^/10
behavioral11 behavioral12
- Target
  
  word/document.xml
- Size
  
  25KB
- MD5
  
  515b8b95348778f069717cf78cb6ef30
- SHA1
  
  3a37cf9538793068e697048fe91df94bf83ace7d
- SHA256
  
  9f35dc286247e7d3a03e5b3d7b91f4ff97447869876236f09fb06cd15c6e8ab6
- SHA512
  
  b96d61f34c49f8bac7a115caddad0745a52ffb35fc37fe44cf867c191ad16645852ef9bf6f4b771929f6c2a92aa42c7b23fbc9c02914e91298585f4734e4b974
- SSDEEP
  
  192:sFmmY+ZsAZbpL9TI9QhfzmTjCYjpDe1+gyeUb:sFmRGstd
Score

1^/10
behavioral13 behavioral14
- Target
  
  word/fontTable.xml
- Size
  
  2KB
- MD5
  
  770b86eee170314650f53072ea9a6ea3
- SHA1
  
  d335dcb1db50cd842a3e9a3b187568dbc5f8f074
- SHA256
  
  12e9a420b6614709f90815e219dc6a91d23f08500c6e0fc604eaec32d53d3c42
- SHA512
  
  f9069c05936c88fe3299eecabdaea9a2e0cd9a7bef7837f77f671ae9c26585074498bf4312782c5de10eaff61594560699d9c01bb8b803f3154314c83c88da25
Score

1^/10
behavioral15 behavioral16
- Target
  
  word/settings.xml
- Size
  
  3KB
- MD5
  
  94fcc0477c2d0b80fbfd3c1f152f6237
- SHA1
  
  070d89661789646b728a8700d829fe4f696fbc57
- SHA256
  
  6bde982bb78db837f5f43164421f3022c0fbb0d9f51ee698b596d982ef17cef5
- SHA512
  
  c48f131d719c324505f8440c8ca7bced37d297d7ac5d3f82e74815e57fd4e26a3dbe4ce33840943c6ea169b97275f6511e77ed0fe05bd36a4562fe5642547556
Score

1^/10
behavioral17 behavioral18
- Target
  
  word/styles.xml
- Size
  
  43KB
- MD5
  
  f85b9a6d77f6b76f312595f43fe2c938
- SHA1
  
  4e4d1daa1ef749d3cb3a566176bfe7c2172e55fd
- SHA256
  
  af3f6650a56185106ee5430463aa63416075659e74228f8dcafe8e2bab786438
- SHA512
  
  4069528674a714fdef121cd51fe9e428d0abab1225a65fa24aa64aafa1bc7bdb10d2733880a7ba3701bc6c19d251152eb6af202b70f0bdb64d2592bcbfc3021f
- SSDEEP
  
  192:v1mmmkse6HLKUhVehPiYDuNYD1CYDQYYDJFYD44jUNjp8jPJjb0TpYDp0pYD/tYA:v1mDkslr76yO9
Score

1^/10
behavioral19 behavioral20
- Target
  
  word/theme/theme1.xml
- Size
  
  8KB
- MD5
  
  2bc1ce59fd7b0a0b8c0c481440aff611
- SHA1
  
  3af65e014f0aacc7a5070dd36206b33c324ba156
- SHA256
  
  2760e6e84d4bf365af6570192dbe9cb57bb32653388d0ea041d116b25b1ca0a2
- SHA512
  
  cad8e8f90aa4ee2fa6b4e5a9c20ef0f876ccc3d6d2f8978f176308a1e3a8c86e57fc0a505ab8d22a89b60b467ae5a6e844613603e192d965564e0583dd6e5574
- SSDEEP
  
  96:xLM1d+8FNk/VmWHS95EUUwctUNoJuLIMFNk/VmWHS95EyUwctUNoJuLla5H7O8jE:xLM9AcCnGuMBR
Score

1^/10
behavioral21 behavioral22
- Target
  
  word/vbaData.xml
- Size
  
  2KB
- MD5
  
  d11c77649d1825dbb1581af91a1c67af
- SHA1
  
  f25ce143180a53ea75a50a9163e61eb51e06431b
- SHA256
  
  119ac08d8aaf410f9b1477e460d40e6b537233080a08f90e07d3ef89aa797235
- SHA512
  
  77211b7bcaad4f617b647ffdd9f9eb5016338ffb4cd712446bee2e11b33c3e1c746eec29047397eb5e94c40b1df10edf42a24d0db8fd51e5b09d506336c06142
Score

1^/10
behavioral23 behavioral24
- Target
  
  word/vbaProject.bin
- Size
  
  21KB
- MD5
  
  d8cc82a6e1de1c8b4548c9c61283f2ee
- SHA1
  
  85c0f3e4cab1b13f1bc233da6cbc01327f81e6ee
- SHA256
  
  b3720afa10751b13fe303c2ec6da77612effc0b0c540526fd30d7ea069c47045
- SHA512
  
  ec7d733ec07a19fb5e3e84df91c11de11b8e842584b6d26fdff7236525ea43a99a2121177b9bec04869a0d46ee35fc696e251fbdfcc86c9af344c79898e6030c
- SSDEEP
  
  384:oTR/jsnwuyHeijOiWDl50jWOtnHkFeFa+Bq:O7ObD32HkFeFa+Bq
Score

1^/10
behavioral25 behavioral26
- Target
  
  word/webSettings.xml
- Size
  
  14KB
- MD5
  
  9753d3dd5908d03780976e9cdc226eea
- SHA1
  
  058e8770c5557b8b6cfd28fc54462ec1c0b16e73
- SHA256
  
  3a759be3223c8a6be0aecf77b734a84f913f204415dabbe19fb463140caff320
- SHA512
  
  9adf3578664bd81756cc2928d14f1a766fc2284b4974c36dff0ed0fdc30be87aedd957db3c3c503bbab2c12d1967adcde8ca81bdb01f4342ffd7b4e2bd2491cd
- SSDEEP
  
  48:cU41mNYmS+B1+6+T+y4+B+P+NDUuBTUxDUuBTtDUuBTJyUuBlgAUuBTHDUuBFqDb:e1mmmSwH2O8Q0L4Jh
Score

1^/10
behavioral27 behavioral28

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28