General

  • Target

    b6378db23ca125de2566b7e7d06f0eee

  • Size

    112KB

  • Sample

    240306-cagqgaha38

  • MD5

    b6378db23ca125de2566b7e7d06f0eee

  • SHA1

    81d279e1c574d8f1ad15d5ba5a78c3f0c8117366

  • SHA256

    df9867b55f1e56af65458aead4ed15464608cd5c11dede7e15a3d0e9d8fdab95

  • SHA512

    1d794477cd266eb8cf232cdd3fd8296d95aae3dcc36d3ccc43bef0ea9dc9481646ddcc95e1728b93e6a51a75b2f393d6ccf71e88bafb7dbb04312272a3f9b647

  • SSDEEP

    3072:oUKsuuoCBdPnmxai63LD6z2qoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa3RY3PB:ozsuuoC4H67Moaaaaaaaaaaaaaaaaaa7

Score
10/10

Malware Config

Targets

    • Target

      b6378db23ca125de2566b7e7d06f0eee

    • Size

      112KB

    • MD5

      b6378db23ca125de2566b7e7d06f0eee

    • SHA1

      81d279e1c574d8f1ad15d5ba5a78c3f0c8117366

    • SHA256

      df9867b55f1e56af65458aead4ed15464608cd5c11dede7e15a3d0e9d8fdab95

    • SHA512

      1d794477cd266eb8cf232cdd3fd8296d95aae3dcc36d3ccc43bef0ea9dc9481646ddcc95e1728b93e6a51a75b2f393d6ccf71e88bafb7dbb04312272a3f9b647

    • SSDEEP

      3072:oUKsuuoCBdPnmxai63LD6z2qoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa3RY3PB:ozsuuoC4H67Moaaaaaaaaaaaaaaaaaa7

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks