4260f85f091926c4bfeb6391a22c904be3fe2bdb178e395814038caee02ccef9

Analysis

max time kernel
1s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
29/12/2023, 23:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

06e488767f70a7ed20e0e5a291751e1d.doc
Size

22KB
MD5

06e488767f70a7ed20e0e5a291751e1d
SHA1

633d37fe446b2e2ae605840c262669e685c1a6e4
SHA256

4260f85f091926c4bfeb6391a22c904be3fe2bdb178e395814038caee02ccef9
SHA512

590717948d3ff2e25272b69f8c1942dec249d05e4739b75e465b81b24c2053b453ac2ca78021fee8cd5cf5525530847f4c586647802d7a58032e39622eff0b78
SSDEEP

192:hAiPMsOYo/AftzxSY7WSN0TYFEX/Cehp7y1FSeFeeFJGFTFB4TMUsPe:+iLOf4GGfKTKEX/CIBy1FSeFeeF6s

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
4556	WINWORD.EXE
4556	WINWORD.EXE

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
4556	WINWORD.EXE
4556	WINWORD.EXE
4556	WINWORD.EXE

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\06e488767f70a7ed20e0e5a291751e1d.doc" /o ""
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:4556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4556-2-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-7-0x00007FF91A790000-0x00007FF91A7A0000-memory.dmp

Filesize
64KB

Download
memory/4556-10-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-12-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-11-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-16-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-17-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-18-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-19-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-15-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-21-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-20-0x00007FF917F10000-0x00007FF917F20000-memory.dmp

Filesize
64KB

Download
memory/4556-13-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-14-0x00007FF917F10000-0x00007FF917F20000-memory.dmp

Filesize
64KB

Download
memory/4556-9-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-8-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-6-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-5-0x00007FF91A790000-0x00007FF91A7A0000-memory.dmp

Filesize
64KB

Download
memory/4556-4-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download
memory/4556-3-0x00007FF91A790000-0x00007FF91A7A0000-memory.dmp

Filesize
64KB

Download
memory/4556-1-0x00007FF91A790000-0x00007FF91A7A0000-memory.dmp

Filesize
64KB

Download
memory/4556-0-0x00007FF91A790000-0x00007FF91A7A0000-memory.dmp

Filesize
64KB

Download
memory/4556-33-0x00007FF95A710000-0x00007FF95A905000-memory.dmp

Filesize
2.0MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads