d1ec1a99818d9e8a1db4a5db51663e8df44c2ca9ce5d3d592616c5e758975c04 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

neft_doc_fact_2023_8715285489.HTA
Size

29KB
Sample

231023-v6awxadd32
MD5

519777cf5aa5c24b39b14b8edc8d2468
SHA1

d1340b9c8f718c79938915469a787b4a2bb06150
SHA256

d1ec1a99818d9e8a1db4a5db51663e8df44c2ca9ce5d3d592616c5e758975c04
SHA512

2bc5519ad9fa6bf8c5cc8cf504716122e4052dc2d6983c2d5f1f49fd83fe4eff5a3c0a86b08e852779e634825135c4fe443b3e1b1eeabda8e57e6d5f5aa58d89
SSDEEP

384:CYLHw6u7c4VA6LkRt+oYNSyz1tFpSvRbePHNx5EqH4EYsgHEkf+AXi3hW5Fp:Cj6Cc4bTfNS+abEbv4EzgEkf/MW

Score

8^/10

Malware Config

Targets

- Target
  
  neft_doc_fact_2023_8715285489.HTA
- Size
  
  29KB
- MD5
  
  519777cf5aa5c24b39b14b8edc8d2468
- SHA1
  
  d1340b9c8f718c79938915469a787b4a2bb06150
- SHA256
  
  d1ec1a99818d9e8a1db4a5db51663e8df44c2ca9ce5d3d592616c5e758975c04
- SHA512
  
  2bc5519ad9fa6bf8c5cc8cf504716122e4052dc2d6983c2d5f1f49fd83fe4eff5a3c0a86b08e852779e634825135c4fe443b3e1b1eeabda8e57e6d5f5aa58d89
- SSDEEP
  
  384:CYLHw6u7c4VA6LkRt+oYNSyz1tFpSvRbePHNx5EqH4EYsgHEkf+AXi3hW5Fp:Cj6Cc4bTfNS+abEbv4EzgEkf/MW
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2