Overview

overview

10

Static

static

1

a4389b334e...09.rtf

windows7-x64

10

a4389b334e...09.rtf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a4389b334e80bd96442138b2dd196209

  • Size

    224KB

  • Sample

    240225-tpecbsfe66

  • MD5

    a4389b334e80bd96442138b2dd196209

  • SHA1

    10c1fd3c31c77a7fc99b68d28e541260da50c4ee

  • SHA256

    c3b5503a0a89fd2eae9a77ff92eef69f08d68b963140b0a31721bb4960545e07

  • SHA512

    f3fb03d9e77953bf6d965835086be917f416728f940fc796cd13b05abd61286ce262682057bdb8bb65b112786edeada5f0301b2968e72ce678cdf239ccfc5443

  • SSDEEP

    1536:+r4DOTg8X0t9yOo6SnDsxI2+6VkoZoOfRb9JmkjJydLksx0ChndVXDke/zmCOcmY:+cDh8OMgoIXmCkpF0SjzPmKUqZBZTw2

Score
10/10

Malware Config

Targets

    • Target

      a4389b334e80bd96442138b2dd196209

    • Size

      224KB

    • MD5

      a4389b334e80bd96442138b2dd196209

    • SHA1

      10c1fd3c31c77a7fc99b68d28e541260da50c4ee

    • SHA256

      c3b5503a0a89fd2eae9a77ff92eef69f08d68b963140b0a31721bb4960545e07

    • SHA512

      f3fb03d9e77953bf6d965835086be917f416728f940fc796cd13b05abd61286ce262682057bdb8bb65b112786edeada5f0301b2968e72ce678cdf239ccfc5443

    • SSDEEP

      1536:+r4DOTg8X0t9yOo6SnDsxI2+6VkoZoOfRb9JmkjJydLksx0ChndVXDke/zmCOcmY:+cDh8OMgoIXmCkpF0SjzPmKUqZBZTw2

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks