Overview

overview

8

Static

static

1

05220527b8...N.docx

windows7-x64

8

05220527b8...N.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05220527b8741ab6783e863892b875a0N.docx

  • Size

    602KB

  • Sample

    240722-y79y6sxapr

  • MD5

    05220527b8741ab6783e863892b875a0

  • SHA1

    733b9d8c91d330c6f1643b6efde429af69adb713

  • SHA256

    0ee1feb54361c653349fe5edea22519b03a52a899c5db0103a075448293c452a

  • SHA512

    9eda695207c4c023a1c9ae0af0f34f5c55c964b87cdb98f4410b8d4c50cf95bb26b0ac81ded6e2db00b6c55b02d9787165fdf3aeed321bacf389f3ade05d129d

  • SSDEEP

    12288:gT2t3XGysjgLaMI9/zilGCDoYrM9lNa27LGzU:gtysFMozi8CDoOM0An

Score
8/10
execution

Malware Config

Targets

    • Target

      05220527b8741ab6783e863892b875a0N.docx

    • Size

      602KB

    • MD5

      05220527b8741ab6783e863892b875a0

    • SHA1

      733b9d8c91d330c6f1643b6efde429af69adb713

    • SHA256

      0ee1feb54361c653349fe5edea22519b03a52a899c5db0103a075448293c452a

    • SHA512

      9eda695207c4c023a1c9ae0af0f34f5c55c964b87cdb98f4410b8d4c50cf95bb26b0ac81ded6e2db00b6c55b02d9787165fdf3aeed321bacf389f3ade05d129d

    • SSDEEP

      12288:gT2t3XGysjgLaMI9/zilGCDoYrM9lNa27LGzU:gtysFMozi8CDoOM0An

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Abuses OpenXML format to download file from external location

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks