e8df89e8fedc6402d8bb13cbae7f43fb24f422d637af73b0657860dc78a1ab86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Information_Security_Incident_Management_Policy.doc
Size

280KB
Sample

231117-xlk79ach35
MD5

16265cf135fbc38b5ff611a19f69dd5f
SHA1

a233f18ca1fdf43859e08fe5adf516fea16684a5
SHA256

e8df89e8fedc6402d8bb13cbae7f43fb24f422d637af73b0657860dc78a1ab86
SHA512

517ca452edbb75b00f7d7a5ea14d41f7c3346aa1e3d22a0ec80742223bdf14ba179be71903676a95023799f731ca6e3a35f9c93ede4c8d0f47ddba87c0e1ba0b
SSDEEP

3072:m8kfoFYbwIE2HwBIl8smQClfAg/ZWoVAdJ2KqnU+2UdU94n8byyEkevpY7eHmWxq:UfRsk68GNxZBd0ps

Score

6^/10

Malware Config

Targets

- Target
  
  Information_Security_Incident_Management_Policy.doc
- Size
  
  280KB
- MD5
  
  16265cf135fbc38b5ff611a19f69dd5f
- SHA1
  
  a233f18ca1fdf43859e08fe5adf516fea16684a5
- SHA256
  
  e8df89e8fedc6402d8bb13cbae7f43fb24f422d637af73b0657860dc78a1ab86
- SHA512
  
  517ca452edbb75b00f7d7a5ea14d41f7c3346aa1e3d22a0ec80742223bdf14ba179be71903676a95023799f731ca6e3a35f9c93ede4c8d0f47ddba87c0e1ba0b
- SSDEEP
  
  3072:m8kfoFYbwIE2HwBIl8smQClfAg/ZWoVAdJ2KqnU+2UdU94n8byyEkevpY7eHmWxq:UfRsk68GNxZBd0ps
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2