Overview

overview

10

Static

static

10

41456189c3...d.docx

windows7-x64

7

41456189c3...d.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41456189c39549fb01583ba4d8e3a5ad

  • Size

    10KB

  • Sample

    240104-s8223aecfq

  • MD5

    41456189c39549fb01583ba4d8e3a5ad

  • SHA1

    ccc5651034288364182c55ec76030ea4f22f8956

  • SHA256

    a0b2480a1eb4e0ad26f53b6dbda72e98783ad3c2caac258a316791f87374c8ea

  • SHA512

    9592ad1e3bc3d24c292dceaf72c78cc1685f4e77b1ae08d8a3e37bc01922565e8425bf421a657f1b15e8ba47e1f02754db3ed77dce2930e3e06efce0d63d67c8

  • SSDEEP

    192:ScIMmtPZG/bEpO8yVgEamWBXpK0ydJb3FZuN:SPXEEpOLNoEP7b2

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

https://longurl.in/hZzk

Targets

    • Target

      41456189c39549fb01583ba4d8e3a5ad

    • Size

      10KB

    • MD5

      41456189c39549fb01583ba4d8e3a5ad

    • SHA1

      ccc5651034288364182c55ec76030ea4f22f8956

    • SHA256

      a0b2480a1eb4e0ad26f53b6dbda72e98783ad3c2caac258a316791f87374c8ea

    • SHA512

      9592ad1e3bc3d24c292dceaf72c78cc1685f4e77b1ae08d8a3e37bc01922565e8425bf421a657f1b15e8ba47e1f02754db3ed77dce2930e3e06efce0d63d67c8

    • SSDEEP

      192:ScIMmtPZG/bEpO8yVgEamWBXpK0ydJb3FZuN:SPXEEpOLNoEP7b2

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks