9f56f4584e859e5e6d38a9675131cf499d735b1637156da7ad6bd1ce78d6babd | Triage

Submit
Reports

Overview

overview

Static

static

98b04ec2f4...7.docx

windows7-x64

7

98b04ec2f4...7.docx

windows10-2004-x64

1

Sharing

General

Target

98b04ec2f4fe5067fdd41e4bd4cb4de7
Size

10KB
Sample

240213-g1kl9sce56
MD5

98b04ec2f4fe5067fdd41e4bd4cb4de7
SHA1

ae9251ba328b72682fc604334107a5654d45c2b8
SHA256

9f56f4584e859e5e6d38a9675131cf499d735b1637156da7ad6bd1ce78d6babd
SHA512

43e9af4319324e2872145c89c00748f7dd9d80ab4abfce5e3f12145ca0de6122e1cc9354d461007849af96a1a1ebf77fffed75cba717aa54012b96317e775c7d
SSDEEP

192:ScIMmtPZG/bEpOVYgEamWBXpK0ydJb3FNwR:SPXEEpOVYNoEP7bo

Score

10^/10

websettings

Static task

static1

Behavioral task

behavioral1

Sample

98b04ec2f4fe5067fdd41e4bd4cb4de7.docx

Resource

win7-20231215-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

98b04ec2f4fe5067fdd41e4bd4cb4de7.docx

Resource

win10v2004-20231215-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

https://upurl.me/2ggwo

Targets

- Target
  
  98b04ec2f4fe5067fdd41e4bd4cb4de7
- Size
  
  10KB
- MD5
  
  98b04ec2f4fe5067fdd41e4bd4cb4de7
- SHA1
  
  ae9251ba328b72682fc604334107a5654d45c2b8
- SHA256
  
  9f56f4584e859e5e6d38a9675131cf499d735b1637156da7ad6bd1ce78d6babd
- SHA512
  
  43e9af4319324e2872145c89c00748f7dd9d80ab4abfce5e3f12145ca0de6122e1cc9354d461007849af96a1a1ebf77fffed75cba717aa54012b96317e775c7d
- SSDEEP
  
  192:ScIMmtPZG/bEpOVYgEamWBXpK0ydJb3FNwR:SPXEEpOVYNoEP7bo
Score

7^/10
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy