General

  • Target

    25c3cfb56c06471d97b93a523b2d98d53bd282ee47d50fc1681b4a46c3c61f85.doc

  • Size

    43KB

  • Sample

    240701-1hesva1ena

  • MD5

    18bf1b2f8418a172477f197f6de7aaa6

  • SHA1

    d6d3e7cd35b07fd4796083244f00cac247845b53

  • SHA256

    25c3cfb56c06471d97b93a523b2d98d53bd282ee47d50fc1681b4a46c3c61f85

  • SHA512

    d9a327e29c1b0c1c7f58c8e71c95705e9b6da58f50c25e134b94637a5a1a388f1e9da4eda3c822c34ea612e3fbcba89194b6fb8d8b46303157dcb89e25baa867

  • SSDEEP

    384:rEQiS8px8SMDR0RJtjsmHlWT3bI0lxFkZX/9BjRbswpX0jr8:Qz3yidlWzbI0lxElLk8

Malware Config

Targets

    • Target

      25c3cfb56c06471d97b93a523b2d98d53bd282ee47d50fc1681b4a46c3c61f85.doc

    • Size

      43KB

    • MD5

      18bf1b2f8418a172477f197f6de7aaa6

    • SHA1

      d6d3e7cd35b07fd4796083244f00cac247845b53

    • SHA256

      25c3cfb56c06471d97b93a523b2d98d53bd282ee47d50fc1681b4a46c3c61f85

    • SHA512

      d9a327e29c1b0c1c7f58c8e71c95705e9b6da58f50c25e134b94637a5a1a388f1e9da4eda3c822c34ea612e3fbcba89194b6fb8d8b46303157dcb89e25baa867

    • SSDEEP

      384:rEQiS8px8SMDR0RJtjsmHlWT3bI0lxFkZX/9BjRbswpX0jr8:Qz3yidlWzbI0lxElLk8

    • Office macro that triggers on suspicious action

      Office document macro which triggers in special circumstances - often malicious.

    • Deletes itself

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks