General

  • Target

    Конспект лекций гр 520131.exe

  • Size

    1.5MB

  • Sample

    240221-gp1jcacc8w

  • MD5

    f0ecdff6fca37f15cac798eb7db990f9

  • SHA1

    8d0427320eae0166ae336bd63e4836d330d021f1

  • SHA256

    1ead2c6e62c4025126ebf61d6f326a1358827c1439d3d2d041c604e81a0c6ba8

  • SHA512

    71a7c6ec1bf265a90ae879bf4d4dc8727d887a76cd59f58a9d8bcacca2d825aecb790821aeeca68ccd478e9f6a358eae879a0d4b01c4c6b1bb0d0c54e9da6033

  • SSDEEP

    49152:1iA5Hc0uAmChc48tLUCeSG74r1/jxFNFiE7C:1TqAmChcXtLUFC/jxFNUEe

Score
10/10

Malware Config

Targets

    • Target

      Конспект лекций гр 520131.exe

    • Size

      1.5MB

    • MD5

      f0ecdff6fca37f15cac798eb7db990f9

    • SHA1

      8d0427320eae0166ae336bd63e4836d330d021f1

    • SHA256

      1ead2c6e62c4025126ebf61d6f326a1358827c1439d3d2d041c604e81a0c6ba8

    • SHA512

      71a7c6ec1bf265a90ae879bf4d4dc8727d887a76cd59f58a9d8bcacca2d825aecb790821aeeca68ccd478e9f6a358eae879a0d4b01c4c6b1bb0d0c54e9da6033

    • SSDEEP

      49152:1iA5Hc0uAmChc48tLUCeSG74r1/jxFNFiE7C:1TqAmChcXtLUFC/jxFNUEe

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Suspicious Office macro

      Office document equipped with 4.0 macros.

MITRE ATT&CK Enterprise v15

Tasks