Overview

overview

10

Static

static

1

67ad0f5789...f0.rtf

windows7-x64

10

67ad0f5789...f0.rtf

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-06-2024 01:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    67ad0f57895b9963fff217941c49d4eb97023d65fd5b3d36ab936c24fa35a6f0.rtf

  • Size

    35KB

  • MD5

    56b4ddf6c247124f9bc633b06b169a84

  • SHA1

    f6d0dfca950ccd1fcb92ed511afba92db7edc843

  • SHA256

    67ad0f57895b9963fff217941c49d4eb97023d65fd5b3d36ab936c24fa35a6f0

  • SHA512

    6b9e14c704e944b576091f0339e874ed679eeb6d2eba55bb65826fa66d7cb0856d20e1a99cb3cb40599b1065586a138aacf64617490c1c7a237e67ed61b980a3

  • SSDEEP

    384:hWpJrekkBQCwF1YiQwB622Kfc51AD1BMulQGcCAnYuw:hWvSQ3F1YiQwMZFsAulQQAw

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\AppData\Local\Temp\67ad0f57895b9963fff217941c49d4eb97023d65fd5b3d36ab936c24fa35a6f0.rtf" /o ""
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1604

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\TCDC3D5.tmp\iso690.xsl
    Filesize

    192KB

    MD5

    6c2768ad0bb52531d051345c0727bf63

    SHA1

    7b11e112a3455acfb212c0581d2bde18ca658717

    SHA256

    b8854ea675e74dc1e0382b1bb2bffa58ccc2326b2769945e8e5f490ee2a645d9

    SHA512

    5d66654791685e0cfd18a0990b06ea4fc294a3785c4e801f6e0576544ba1c6651225b9977b8850acd563d694b0ecce425384d7ce69879ad65a25a5c61c4ff0c4

    Download Submit

  • memory/1604-0-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-5-0x00007FFA8F68D000-0x00007FFA8F68E000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1604-17-0x00007FFA4CE60000-0x00007FFA4CE70000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-4-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-9-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-3-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-2-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-10-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-11-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-12-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-13-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-14-0x00007FFA4CE60000-0x00007FFA4CE70000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-1-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-6-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-539-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-7-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-16-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-18-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-20-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-21-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-23-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-22-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-19-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-8-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-517-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-543-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1604-542-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-541-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-540-0x00007FFA4F670000-0x00007FFA4F680000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1604-15-0x00007FFA8F5F0000-0x00007FFA8F7E5000-memory.dmp

    Filesize

    2.0MB

    Download