Overview

overview

10

Static

static

10

c2747012f9...6.docx

windows7-x64

7

c2747012f9...6.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2747012f95b22cb9b627a16bd62a7e6

  • Size

    10KB

  • Sample

    240312-e5ynksad45

  • MD5

    c2747012f95b22cb9b627a16bd62a7e6

  • SHA1

    eb66e01469f2b643e28251f130047ad7bc23c26b

  • SHA256

    7108ce3a07aa75b30ad993af8be72fda1f4974b734bf7901073442b03c95b511

  • SHA512

    e8fa9e2ef2794a555ed40834db37090af4675e94879d8f10c465a79b506041bf359e44aec76da8a7de11c57b5459822c9a2bbc553e7c5f52256b908747c93910

  • SSDEEP

    192:ScIMmtPZG/bEpOKIgEamWBXpK0ydJb3F0Dt:SPXEEpOdNoEP7b8

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

https://longurl.in/TLLwU

Targets

    • Target

      c2747012f95b22cb9b627a16bd62a7e6

    • Size

      10KB

    • MD5

      c2747012f95b22cb9b627a16bd62a7e6

    • SHA1

      eb66e01469f2b643e28251f130047ad7bc23c26b

    • SHA256

      7108ce3a07aa75b30ad993af8be72fda1f4974b734bf7901073442b03c95b511

    • SHA512

      e8fa9e2ef2794a555ed40834db37090af4675e94879d8f10c465a79b506041bf359e44aec76da8a7de11c57b5459822c9a2bbc553e7c5f52256b908747c93910

    • SSDEEP

      192:ScIMmtPZG/bEpOKIgEamWBXpK0ydJb3F0Dt:SPXEEpOdNoEP7b8

    Score
    7/10

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks