Overview

overview

8

Static

static

1

BankPaymAd...t.docx

windows7-x64

8

BankPaymAd...t.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BankPaymAdviceVend.Report.docx.doc

  • Size

    438KB

  • Sample

    240213-zwkqkshc5s

  • MD5

    22eede72746e7a9a26f3f6d311a12a7e

  • SHA1

    6738d1a969194359c7c7579956269d77fed8d26f

  • SHA256

    2e1408013503cbc13466e2041bd3e045833ce65f5c91b7226e28e27d43d6eaf9

  • SHA512

    1412ac7e90d4c10ad601b501af8cc3cecf64c1cdffab38203a99215d6a6b1f72eb8961a378a481dc7111fce173d2347bcc9f6ab543dbdcf41e8bf4c3833bc7cb

  • SSDEEP

    12288:yI34h1dPefmdFscXUk+MiCgcXWbLg6DPjWHOOkxogMp:z34h7PtdFdXUWh0bjWHOOkdMp

Score
8/10

Malware Config

Targets

    • Target

      BankPaymAdviceVend.Report.docx.doc

    • Size

      438KB

    • MD5

      22eede72746e7a9a26f3f6d311a12a7e

    • SHA1

      6738d1a969194359c7c7579956269d77fed8d26f

    • SHA256

      2e1408013503cbc13466e2041bd3e045833ce65f5c91b7226e28e27d43d6eaf9

    • SHA512

      1412ac7e90d4c10ad601b501af8cc3cecf64c1cdffab38203a99215d6a6b1f72eb8961a378a481dc7111fce173d2347bcc9f6ab543dbdcf41e8bf4c3833bc7cb

    • SSDEEP

      12288:yI34h1dPefmdFscXUk+MiCgcXWbLg6DPjWHOOkxogMp:z34h7PtdFdXUWh0bjWHOOkdMp

    Score
    8/10

    • Blocklisted process makes network request

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks