ef274d62fd8b447b68f031a13500e37fe991a6f0bec09b731e936769917076d4 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

1.1.docx

windows7-x64

8

1.1.docx

windows10-2004-x64

1

Sharing

General

Target

1.1.docx
Size

16KB
Sample

240326-k7dn3seh83
MD5

9ebc4471684c5683826aa31dd8c85de7
SHA1

e1f7565dbd5b472a8b523c8dccf27e50d72b09bb
SHA256

ef274d62fd8b447b68f031a13500e37fe991a6f0bec09b731e936769917076d4
SHA512

0bf2ab3b76d0acdd4bb829d5f9c71d6db2c32962af07c43b6508f2172dcacc24a1772d518ca10bac102a9edbeb406a5e5f75b7c13395818cfdee0722f14b3913
SSDEEP

384:nyX8Pd3Wzs8PL8wi4OEwH8TIbE91r2fRlJYyvi4Ud8f+:nc8hU5P3DOqnYJzzvFUd8G

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

1.1.docx

Resource

win7-20240221-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

1.1.docx

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  1.1.docx
- Size
  
  16KB
- MD5
  
  9ebc4471684c5683826aa31dd8c85de7
- SHA1
  
  e1f7565dbd5b472a8b523c8dccf27e50d72b09bb
- SHA256
  
  ef274d62fd8b447b68f031a13500e37fe991a6f0bec09b731e936769917076d4
- SHA512
  
  0bf2ab3b76d0acdd4bb829d5f9c71d6db2c32962af07c43b6508f2172dcacc24a1772d518ca10bac102a9edbeb406a5e5f75b7c13395818cfdee0722f14b3913
- SSDEEP
  
  384:nyX8Pd3Wzs8PL8wi4OEwH8TIbE91r2fRlJYyvi4Ud8f+:nc8hU5P3DOqnYJzzvFUd8G
Score

8^/10
- Blocklisted process makes network request
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy