Overview

overview

10

Static

static

1

sample.rtf

windows7-x64

10

sample.rtf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sample.rtf

  • Size

    54KB

  • Sample

    240612-wj9mdsxhjk

  • MD5

    8887b85733e2a0d87af945ee06ed4202

  • SHA1

    2db46743e3380b15028b37de53f43523f8463ce8

  • SHA256

    bf8b07a83b35e8435ca8fa2af8ca02d515ae50262965df69c99bd167f40d703d

  • SHA512

    8924538ffa99c20ed6707a93182b44850cc4dc50d3aebd79eb0634b473cd05852234b257b7d2f66068f98ef0a3ddb9eaf2fe104abe3e9700fc917363f4e38d07

  • SSDEEP

    768:q53m4tqBkFGcVKpGx8/wpni40ziRhAZqCj:qv2cVKpGx8IN6jj

Score
10/10

Malware Config

Targets

    • Target

      sample.rtf

    • Size

      54KB

    • MD5

      8887b85733e2a0d87af945ee06ed4202

    • SHA1

      2db46743e3380b15028b37de53f43523f8463ce8

    • SHA256

      bf8b07a83b35e8435ca8fa2af8ca02d515ae50262965df69c99bd167f40d703d

    • SHA512

      8924538ffa99c20ed6707a93182b44850cc4dc50d3aebd79eb0634b473cd05852234b257b7d2f66068f98ef0a3ddb9eaf2fe104abe3e9700fc917363f4e38d07

    • SSDEEP

      768:q53m4tqBkFGcVKpGx8/wpni40ziRhAZqCj:qv2cVKpGx8IN6jj

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks