Overview

overview

10

Static

static

8

Plantilla_...I.docm

windows7-x64

1

Plantilla_...I.docm

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Plantilla_Informacion_EGUI.docm

  • Size

    126KB

  • Sample

    240331-w6ds8sgg5z

  • MD5

    fc39c221d227591278a0aad956633c5f

  • SHA1

    352bf5a4cfe3e659c49de7aebd881b8b249f5831

  • SHA256

    ca29c0f69ee3990909130a31c408aa046fbc74d4482d3434280efbba971e4fe5

  • SHA512

    0384e5e0a4e4df3306eef983c47b1257e54fbb278694da6073f56dae5ba27c40f744f179cc66865ed1b0dcffffe671fc04fbc0301f235804b5a37bee0866082d

  • SSDEEP

    3072:kICzugFQ2lyhy2eBA1jQjtIBNdRslKyVKvaWHMf3J/efU:kwgF9EhdmAdQjtSFsAbHMwfU

Score
10/10
macromotwphishing

Malware Config

Targets

    • Target

      Plantilla_Informacion_EGUI.docm

    • Size

      126KB

    • MD5

      fc39c221d227591278a0aad956633c5f

    • SHA1

      352bf5a4cfe3e659c49de7aebd881b8b249f5831

    • SHA256

      ca29c0f69ee3990909130a31c408aa046fbc74d4482d3434280efbba971e4fe5

    • SHA512

      0384e5e0a4e4df3306eef983c47b1257e54fbb278694da6073f56dae5ba27c40f744f179cc66865ed1b0dcffffe671fc04fbc0301f235804b5a37bee0866082d

    • SSDEEP

      3072:kICzugFQ2lyhy2eBA1jQjtIBNdRslKyVKvaWHMf3J/efU:kwgF9EhdmAdQjtSFsAbHMwfU

    Score
    10/10
    motwphishing

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

      phishingmotw
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks