Overview

overview

8

Static

static

1

0e39b2732b...df.rtf

windows7-x64

8

0e39b2732b...df.rtf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0e39b2732bd024426716a13885a0c2572a8a9fa7bf6466dc865dd7466a0a8fdf.doc

  • Size

    34KB

  • Sample

    240521-zrgs5aac32

  • MD5

    7ffa7a0c72171e4c6544c9629a2e11d6

  • SHA1

    b9469ae463c1d9dff2d12bc132afdd052bc67805

  • SHA256

    0e39b2732bd024426716a13885a0c2572a8a9fa7bf6466dc865dd7466a0a8fdf

  • SHA512

    23013f991d4fb3e2472a44b11f7d063e98c505dfaf37d6f8bb220bcec11b1fd8e2e84e928b603056907df6ff69c1ba7e51a5f9a0949f47ec9cf30a82facc4b9d

  • SSDEEP

    384:DdLBx2rL5ro2BvKrOVWFz4YBfQw9rF9VQQK3rLRjWCMqfmV9TUZYDAFrkzu:fx23q2qFMY5Q65UblCDUZfSzu

Score
8/10

Malware Config

Targets

    • Target

      0e39b2732bd024426716a13885a0c2572a8a9fa7bf6466dc865dd7466a0a8fdf.doc

    • Size

      34KB

    • MD5

      7ffa7a0c72171e4c6544c9629a2e11d6

    • SHA1

      b9469ae463c1d9dff2d12bc132afdd052bc67805

    • SHA256

      0e39b2732bd024426716a13885a0c2572a8a9fa7bf6466dc865dd7466a0a8fdf

    • SHA512

      23013f991d4fb3e2472a44b11f7d063e98c505dfaf37d6f8bb220bcec11b1fd8e2e84e928b603056907df6ff69c1ba7e51a5f9a0949f47ec9cf30a82facc4b9d

    • SSDEEP

      384:DdLBx2rL5ro2BvKrOVWFz4YBfQw9rF9VQQK3rLRjWCMqfmV9TUZYDAFrkzu:fx23q2qFMY5Q65UblCDUZfSzu

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Exploitation for Client Execution

1
T1203

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks