Overview

overview

10

Static

static

1

a45e37671d...f6.rtf

windows7-x64

10

a45e37671d...f6.rtf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a45e37671dee983884ff411af564c547b8b9322e35b3c8129bb8eb66e6f91ef6.rtf

  • Size

    175KB

  • Sample

    240629-b269rs1dlp

  • MD5

    b0d399c7eee1ee84aa8e55b81a4ac56f

  • SHA1

    35cd951142cc97df3b88b184e1267f3ff318d6bf

  • SHA256

    a45e37671dee983884ff411af564c547b8b9322e35b3c8129bb8eb66e6f91ef6

  • SHA512

    358b33e1d6c9e76c76909a2b540aa76ee9afdf6326ac866e8eb35218148eee156fc24dcd3378ae33af1bc8e3608a2b20efcb5737bc43e5e0e2ddc7943c5df9e9

  • SSDEEP

    1536:K6Qw5h6RYz+h8sqkUPIpNvD0zeOh6ODbzXKX9By66fMsSkg+uAoJp:K6Qwr6T2PIpNvD0zet029MzzjuAoJp

Score
10/10
execution

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

https://uploaddeimagens.com.br/images/004/805/162/original/new_image_%281%29.jpg?1719495498
exe.dropper

https://uploaddeimagens.com.br/images/004/805/162/original/new_image_%281%29.jpg?1719495498

Targets

    • Target

      a45e37671dee983884ff411af564c547b8b9322e35b3c8129bb8eb66e6f91ef6.rtf

    • Size

      175KB

    • MD5

      b0d399c7eee1ee84aa8e55b81a4ac56f

    • SHA1

      35cd951142cc97df3b88b184e1267f3ff318d6bf

    • SHA256

      a45e37671dee983884ff411af564c547b8b9322e35b3c8129bb8eb66e6f91ef6

    • SHA512

      358b33e1d6c9e76c76909a2b540aa76ee9afdf6326ac866e8eb35218148eee156fc24dcd3378ae33af1bc8e3608a2b20efcb5737bc43e5e0e2ddc7943c5df9e9

    • SSDEEP

      1536:K6Qw5h6RYz+h8sqkUPIpNvD0zeOh6ODbzXKX9By66fMsSkg+uAoJp:K6Qwr6T2PIpNvD0zet029MzzjuAoJp

    Score
    10/10
    execution

    • Blocklisted process makes network request

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks