Overview

overview

10

Static

static

10

8a3fbf7dee...2.docx

windows7-x64

7

8a3fbf7dee...2.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8a3fbf7dee4549ae21557d0b2d37fce2

  • Size

    10KB

  • Sample

    240202-w96nesehap

  • MD5

    8a3fbf7dee4549ae21557d0b2d37fce2

  • SHA1

    f3c9f277e29dd8a49f512633c4f3f7835661a4dd

  • SHA256

    41804a0cc177f07dfa8333fdf8839968137f35f6886b64dff13cbd396bdb9202

  • SHA512

    87568e844c4687b0d5d00588d7b98e9d2a7f5aab6910735046cd3f8513d16604378f18912f130eeb0454efde060f7a1ff0403244c75a62efe80ec33aad71267a

  • SSDEEP

    192:ScIMmtP12G/bWvsq2VwOQjrdlJFOyX3DJ:SPXjmx2KOWjJFlnd

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

https://linkr.uk/ELgjA

Targets

    • Target

      8a3fbf7dee4549ae21557d0b2d37fce2

    • Size

      10KB

    • MD5

      8a3fbf7dee4549ae21557d0b2d37fce2

    • SHA1

      f3c9f277e29dd8a49f512633c4f3f7835661a4dd

    • SHA256

      41804a0cc177f07dfa8333fdf8839968137f35f6886b64dff13cbd396bdb9202

    • SHA512

      87568e844c4687b0d5d00588d7b98e9d2a7f5aab6910735046cd3f8513d16604378f18912f130eeb0454efde060f7a1ff0403244c75a62efe80ec33aad71267a

    • SSDEEP

      192:ScIMmtP12G/bWvsq2VwOQjrdlJFOyX3DJ:SPXjmx2KOWjJFlnd

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks