Overview

overview

10

Static

static

10

61493abc03...4.docx

windows7-x64

7

61493abc03...4.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61493abc0306ac55a1f8b681101f8cf4

  • Size

    10KB

  • Sample

    240117-azj6sadehq

  • MD5

    61493abc0306ac55a1f8b681101f8cf4

  • SHA1

    aabfe5da018a2284766b10d3714cbc9377f4e1f1

  • SHA256

    ced4c57aa2f7a5ba8e206a1f831eda05b39f252828b7ed762a8ccda9dd5211ff

  • SHA512

    ff7d19e5ca39aef82d5ca3ddf757e8a76c964d6f57ef578060f40acd14e444a9795a96826d0b0ec5c105b7b4b979a11af54159bb0b82be3373dd7cc89fbfc860

  • SSDEEP

    192:ScIMmtPZG/bEpOpgEamWBXpK0ydJb3FSxp:SPXEEpOpNoEP7bc

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

https://longurl.in/UQeK

Targets

    • Target

      61493abc0306ac55a1f8b681101f8cf4

    • Size

      10KB

    • MD5

      61493abc0306ac55a1f8b681101f8cf4

    • SHA1

      aabfe5da018a2284766b10d3714cbc9377f4e1f1

    • SHA256

      ced4c57aa2f7a5ba8e206a1f831eda05b39f252828b7ed762a8ccda9dd5211ff

    • SHA512

      ff7d19e5ca39aef82d5ca3ddf757e8a76c964d6f57ef578060f40acd14e444a9795a96826d0b0ec5c105b7b4b979a11af54159bb0b82be3373dd7cc89fbfc860

    • SSDEEP

      192:ScIMmtPZG/bEpOpgEamWBXpK0ydJb3FSxp:SPXEEpOpNoEP7bc

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks