Overview

overview

10

Static

static

8

MT103.doc

windows7-x64

10

MT103.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    MT103.zip

  • Size

    20KB

  • Sample

    240430-lpbx7she7w

  • MD5

    f1541cbcd1d6df06db65675e9ca02f61

  • SHA1

    12c0385a9d665588f27c150cc09d49620804aafd

  • SHA256

    00c2ea777ae669c8dce549f42c01050413906e1fd33169aa383b169dce0c7996

  • SHA512

    116ac5fa0f17ad5d06e91fe1fe1b090aee636a301098626175b726cb2854b788889141b4a495b026af5710d3eff0ed4352691a49e1c2ac709c7fc74ef19393d2

  • SSDEEP

    384:s+KwQBnfS5PBpXlb5P3L34qjPvx2FILv1A0L8UlkwdPecZO0ZYU8oPa7o:QJN65PrztR8ILiY8UlPJvZO6YU1PV

Score
10/10
macromacro_on_action

Malware Config

Targets

    • Target

      MT103.doc

    • Size

      70KB

    • MD5

      1812b0ee6924f6188269c65494e580e8

    • SHA1

      fc83f1d3acb53009cbaa7b9df57676274fc561a1

    • SHA256

      7fb4306a36b61be977dfc6f56443542c9d70273bb97b55d5049cd86608aa0f68

    • SHA512

      5432bbe2f3f54a1ddf8980ad1f34a684d0e7b17bd29cc059c3c20e798dfcab025d68a0b46776630c64b84c062a146e27c2f75f8de57e08f88b1ac8cfed1f8eff

    • SSDEEP

      768:Dpwxw+tCmFeFahP8nmwyd04aCF+Fas0Mxw+tq:DSxrtCmFeFahP81CF+FasZxrt

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks