General

  • Target

    Doc0908TN.zip

  • Size

    14.7MB

  • Sample

    240809-mrm9patcpd

  • MD5

    6f0b307d44bf672134ff8e4981e0c3af

  • SHA1

    e6cb55885ba06a9d1b1e143fbdf913e344a04cd5

  • SHA256

    7db1c41265463ec8f82c561a753b77bdffbff9fdad44a434b5848c88564e6058

  • SHA512

    6b7d824be72a21f0ff48ed422f6b4cbcee99db21ad9fb1d3412a0592bd2144b81cc8b68906b96cbf39809236673febe40708335696cd720952a6386de61ac02d

  • SSDEEP

    196608:2+0CVialvP1TbUMUeHLbeZ41SYEyJE+h79liIQbgWz+yR1nyjF9WKYzzWAbKIAhU:2+9PXUoeZUu09lWgWdyjF9/98KvYSm

Score
3/10

Malware Config

Targets

    • Target

      DLLs/_asyncio.pyd

    • Size

      63KB

    • MD5

      33d0b6de555ddbbbd5ca229bfa91c329

    • SHA1

      03034826675ac93267ce0bf0eaec9c8499e3fe17

    • SHA256

      a9a99a2b847e46c0efce7fcfefd27f4bce58baf9207277c17bffd09ef4d274e5

    • SHA512

      dbbd1ddfa445e22a0170a628387fcf3cb95e6f8b09465d76595555c4a67da4274974ba7b348c4c81fe71c68d735c13aacb8063d3a964a8a0556fb000d68686b7

    • SSDEEP

      1536:owmuopcJpmVwR40axzEfRILOnMv7SySmPxe:owmu4/mR40axzEfRILOnw3xe

    Score
    1/10
    • Target

      DLLs/_bz2.pyd

    • Size

      81KB

    • MD5

      86d1b2a9070cd7d52124126a357ff067

    • SHA1

      18e30446fe51ced706f62c3544a8c8fdc08de503

    • SHA256

      62173a8fadd4bf4dd71ab89ea718754aa31620244372f0c5bbbae102e641a60e

    • SHA512

      7db4b7e0c518a02ae901f4b24e3860122acc67e38e73f98f993fe99eb20bb3aa539db1ed40e63d6021861b54f34a5f5a364907ffd7da182adea68bbdd5c2b535

    • SSDEEP

      1536:hXOz78ZqjUyAsIi7W/5+D8W35mjZm35ILCVM7SyfYPxe:pOzwpyAFi7WMgW34jZm35ILCVMZoxe

    Score
    1/10
    • Target

      DLLs/_ctypes.pyd

    • Size

      120KB

    • MD5

      1635a0c5a72df5ae64072cbb0065aebe

    • SHA1

      c975865208b3369e71e3464bbcc87b65718b2b1f

    • SHA256

      1ea3dd3df393fa9b27bf6595be4ac859064cd8ef9908a12378a6021bba1cb177

    • SHA512

      6e34346ea8a0aacc29ccd480035da66e280830a7f3d220fd2f12d4cfa3e1c03955d58c0b95c2674aea698a36a1b674325d3588483505874c2ce018135320ff99

    • SSDEEP

      3072:0OEESRiaiH6lU1vxqfrId0sx3gVILLPykxA:hj+I1vAfrIRx3gN

    Score
    1/10
    • Target

      DLLs/_ctypes_test.pyd

    • Size

      35KB

    • MD5

      c066648a261aff1d5c5b8211a6f0904f

    • SHA1

      e8fb0b96820f609d8598b8b6cc3bc0e08c740361

    • SHA256

      4207675a1d3390590e381faf139f9f902ec680042f48f128b05839cf49931266

    • SHA512

      1544a4b1284f46ae7b0212a978c9a7c955484a6fb62c3141c56c9bf3258ed398188213af5ee2d473b18b469fba84c8f050b6c173c3757bc920ce63a8d81ebc4d

    • SSDEEP

      768:ts9LvvJXDHSwZz+3RsfMNJIL6kZ5YiSyvZWrPxWElu:WLvlmwZC3RsfMNJIL6kH7Sy8rPxS

    Score
    1/10
    • Target

      DLLs/_decimal.pyd

    • Size

      248KB

    • MD5

      20c77203ddf9ff2ff96d6d11dea2edcf

    • SHA1

      0d660b8d1161e72c993c6e2ab0292a409f6379a5

    • SHA256

      9aac010a424c757c434c460c3c0a6515d7720966ab64bad667539282a17b4133

    • SHA512

      2b24346ece2cbd1e9472a0e70768a8b4a5d2c12b3d83934f22ebdc9392d9023dcb44d2322ada9edbe2eb0e2c01b5742d2a83fa57ca23054080909ec6eb7cf3ca

    • SSDEEP

      6144:3LT2sto29vTlN5cdIKdo4/3VaV8FlBa9qWMa3pLW1A/T8O51j4iab9M:H2s/9vTlPcdk4vVtFU98iIu

    Score
    1/10
    • Target

      DLLs/_elementtree.pyd

    • Size

      125KB

    • MD5

      9dc3969ee6304eec0cf502fe34c9bbc9

    • SHA1

      be8895abf3fcbe4e7df3f95d0d0c030377548ea0

    • SHA256

      262d771de19a071c2d086717c29dc9a704b33f95f6aa06ec2092f3e8f54495ae

    • SHA512

      d5c02a0e4b4ba4fe1348e218123d56a91efeff291dec10a4c8df6d7c86bad47ad95501396af35ea7103b3b5a9f27a81a67f8c8ca604e8da3922209b71d46e5aa

    • SSDEEP

      3072:qd5cuQq7BSOEpSHOIS+CgSenCODxY9MJ8MJTMJ4MJDdvnT2+g3uJIL6fgORxe:qp7BSOAjIS+yEVDC97IDG9T27ubq

    Score
    1/10
    • Target

      DLLs/_hashlib.pyd

    • Size

      63KB

    • MD5

      d4674750c732f0db4c4dd6a83a9124fe

    • SHA1

      fd8d76817abc847bb8359a7c268acada9d26bfd5

    • SHA256

      caa4d2f8795e9a55e128409cc016e2cc5c694cb026d7058fc561e4dd131ed1c9

    • SHA512

      97d57cfb80dd9dd822f2f30f836e13a52f771ee8485bc0fd29236882970f6bfbdfaac3f2e333bba5c25c20255e8c0f5ad82d8bc8a6b6e2f7a07ea94a9149c81e

    • SSDEEP

      1536:/smKJPganCspF1dqZAC2QjP2RILOIld7SyEPxDF:/smKpgNoF1dqZDnjP2RILOIv2xB

    Score
    1/10
    • Target

      DLLs/_lzma.pyd

    • Size

      154KB

    • MD5

      7447efd8d71e8a1929be0fac722b42dc

    • SHA1

      6080c1b84c2dcbf03dcc2d95306615ff5fce49a6

    • SHA256

      60793c8592193cfbd00fd3e5263be4315d650ba4f9e4fda9c45a10642fd998be

    • SHA512

      c6295d45ed6c4f7534c1a38d47ddc55fea8b9f62bbdc0743e4d22e8ad0484984f8ab077b73e683d0a92d11bf6588a1ae395456cfa57da94bb2a6c4a1b07984de

    • SSDEEP

      3072:j0k3SXjD9aWpAn3rb7SbuDlvNgS4fWqEznfo9mNoFTSlXZ8Ax5ILZ1GIxq:j0kiXjD9v8X7Euk4wYOFTafxn

    Score
    1/10
    • Target

      DLLs/_msi.pyd

    • Size

      43KB

    • MD5

      8b07a1f0a073e33a990bab943cf2f22c

    • SHA1

      d4fbed8732fdfe25fec37f1152bbcaf3e0fb2d9b

    • SHA256

      c26236a23ea4b99c19f9f9bb30cae26bc5ff66d0fdd7fd65726a0bcb667cb160

    • SHA512

      690a6f9ec6636df89a43513554be0bf4821df8ecb60a578ada8e0a6112846cd6bafef9449f85ef95bcdf91b3d3e0631f3413fc0eed14546f94ff42762270b7fe

    • SSDEEP

      768:6tZrHlbhCeruhfPxoUAIZdeoLuM3uJYVewp2m25SyG5ILCGSF5YiSyvkzLPxWElw:6PbtNruhfpuiVD2LSyG5ILCGSL7Sy83u

    Score
    1/10
    • Target

      DLLs/_multiprocessing.pyd

    • Size

      33KB

    • MD5

      a9a0588711147e01eed59be23c7944a9

    • SHA1

      122494f75e8bb083ddb6545740c4fae1f83970c9

    • SHA256

      7581edea33c1db0a49b8361e51e6291688601640e57d75909fb2007b2104fa4c

    • SHA512

      6b580f5c53000db5954deb5b2400c14cb07f5f8bbcfc069b58c2481719a0f22f0d40854ca640ef8425c498fbae98c9de156b5cc04b168577f0da0c6b13846a88

    • SSDEEP

      768:eZt56pxGyC572edLMILWt3u5YiSyvCVPxWElj:eL5PyC572edLMILWt3E7SyqPx3

    Score
    1/10
    • Target

      DLLs/_overlapped.pyd

    • Size

      48KB

    • MD5

      fdf8663b99959031780583cce98e10f5

    • SHA1

      6c0bafc48646841a91625d74d6b7d1d53656944d

    • SHA256

      2ebbb0583259528a5178dd37439a64affcb1ab28cf323c6dc36a8c30362aa992

    • SHA512

      a5371d6f6055b92ac119a3e3b52b21e2d17604e5a5ac241c008ec60d1db70b3ce4507d82a3c7ce580ed2eb7d83bb718f4edc2943d10cb1d377fa006f4d0026b6

    • SSDEEP

      768:8AM30ie6tyw0lTnj1TulWXaSV2cFVNILXtP5YiSyvWPxWElh7:8AM3hacSV2UNILXth7SyuPxd7

    Score
    1/10
    • Target

      DLLs/_queue.pyd

    • Size

      30KB

    • MD5

      d8c1b81bbc125b6ad1f48a172181336e

    • SHA1

      3ff1d8dcec04ce16e97e12263b9233fbf982340c

    • SHA256

      925f05255f4aae0997dc4ec94d900fd15950fd840685d5b8aa755427c7422b14

    • SHA512

      ccc9f0d3aca66729832f26be12f8e7021834bbee1f4a45da9451b1aa5c2e63126c0031d223af57cf71fad2c85860782a56d78d8339b35720194df139076e0772

    • SSDEEP

      768:bxrUGCpa6rIxdK/rAwVILQU85YiSyvz5PxWEaAc:trUZIzYrAwVILQUG7SydPxDc

    Score
    1/10
    • Target

      DLLs/_sqlite3.pyd

    • Size

      96KB

    • MD5

      5279d497eee4cf269d7b4059c72b14c2

    • SHA1

      aff2f5de807ae03e599979a1a5c605fc4bad986e

    • SHA256

      b298a44af162be7107fd187f04b63fb3827f1374594e22910ec38829da7a12dc

    • SHA512

      20726fc5b46a6d07a3e58cdf1bed821db57ce2d9f5bee8cfd59fce779c8d5c4b517d3eb70cd2a0505e48e465d628a674d18030a909f5b73188d07cc80dcda925

    • SSDEEP

      1536:jWlym6NVj508Vp22J8Ck+sOwpI5NbTAWac4LdyR+KSSRILOQd7SywcPxC:f5p/mCk+sQvb0dc2o2SRILOQdWMxC

    Score
    1/10
    • Target

      DLLs/_ssl.pyd

    • Size

      156KB

    • MD5

      7910fb2af40e81bee211182cffec0a06

    • SHA1

      251482ed44840b3c75426dd8e3280059d2ca06c6

    • SHA256

      d2a7999e234e33828888ad455baa6ab101d90323579abc1095b8c42f0f723b6f

    • SHA512

      bfe6506feb27a592fe9cf1db7d567d0d07f148ef1a2c969f1e4f7f29740c6bb8ccf946131e65fe5aa8ede371686c272b0860bd4c0c223195aaa1a44f59301b27

    • SSDEEP

      3072:OwYiZ+PtocHnVXhLlasuvMETxoEBA+nbUtGnBSonJCNI5ILC7Gax1:FYk+PtocHVxx/uvPCEwhGJ

    Score
    1/10
    • Target

      DLLs/_testbuffer.pyd

    • Size

      53KB

    • MD5

      b41492ed7763db8d7324ab287532863d

    • SHA1

      10eb5b524fa6f606dd8b94082097c28d2209d8a7

    • SHA256

      6aea1e37a3fcd37290d02f980cff60ac5a9f117486febc6416a616f5061a4f91

    • SHA512

      6529424dab2e085d930c584f35fa3cf8aaa25f8603fef9949daa77f8afae6347d244d7593a8dc470aad248afbe121ac00972098aaf188a3dab777dcf43fcc886

    • SSDEEP

      1536:d6mPF01DdmRkN9mSvOAWch7jH9caNILX5M7SyMPxfS:ImPF0tsqehch7jdcaNILX5MSxfS

    Score
    1/10
    • Target

      DLLs/_testcapi.pyd

    • Size

      130KB

    • MD5

      db179c42fe3e86ce8f98b5de4f859a5d

    • SHA1

      ead8ef35a7539484c2fab3569a1fa4cb654e39e8

    • SHA256

      edfc9fe84b4b6bf9a2ef04620bed7b400d8976f2d7fca1244f250d4e1d686db7

    • SHA512

      08949d6c788a265afd419637c7ca14d9e593ff04abd10344803a8d40eee9e736d1d533d6127362e2624d57033348c8d8350e98452fddf84e8736ca86028d887c

    • SSDEEP

      3072:h0PEnXJFhj6MbpHTaVfWsNkfTsvffepwFwp0w5Jgw9w/hem81wffhFaM/5EVgu7O:mPEn57tlHGGnZz/gvj

    Score
    1/10

MITRE ATT&CK Matrix

Tasks