Overview

overview

10

Static

static

1

2024_6250_...4.docx

windows10-1703-x64

1

2024_6250_...4.docx

windows7-x64

7

2024_6250_...4.docx

windows10-2004-x64

1

2024_6250_...4.docx

windows11-21h2-x64

10

Resubmissions

20/09/2024, 07:40

240920-jhv2dswckk 10

07/08/2024, 13:57

240807-q9pf9asgje 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024_6250_SWIFT_OSW20074.docx

  • Size

    84KB

  • Sample

    240920-jhv2dswckk

  • MD5

    843d671e8f7ae902d8a07e7288d588cf

  • SHA1

    4ba4c3f90193af7d093c2c706e3a7b2756d9612f

  • SHA256

    0ef1c7b99565c7f82d7c9bbeec58a18398c6b94818924135f85d70fa7c778911

  • SHA512

    15be0e93786938e4e29c06c30b5653379a309ca6256edb5947e75d1e364781d36b802d584526667d902b9a44a66fa68d18730adb29e8d5c5650e61ed5d057e0b

  • SSDEEP

    1536:Pctb7ih7kPw17kG1oc2FjOppqOYN1T8hLdvV5brdS7t:Pct3ixkw17kcYOppqOYHo9JV5brdS7t

Score
10/10
discovery

Malware Config

Targets

    • Target

      2024_6250_SWIFT_OSW20074.docx

    • Size

      84KB

    • MD5

      843d671e8f7ae902d8a07e7288d588cf

    • SHA1

      4ba4c3f90193af7d093c2c706e3a7b2756d9612f

    • SHA256

      0ef1c7b99565c7f82d7c9bbeec58a18398c6b94818924135f85d70fa7c778911

    • SHA512

      15be0e93786938e4e29c06c30b5653379a309ca6256edb5947e75d1e364781d36b802d584526667d902b9a44a66fa68d18730adb29e8d5c5650e61ed5d057e0b

    • SSDEEP

      1536:Pctb7ih7kPw17kG1oc2FjOppqOYN1T8hLdvV5brdS7t:Pct3ixkw17kcYOppqOYHo9JV5brdS7t

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks