049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309 | Triage

Submit
Reports

Overview

overview

Static

static

049261b1ba...9.docx

windows7-x64

7

049261b1ba...9.docx

windows10-2004-x64

1

Sharing

General

Target

049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309
Size

10KB
Sample

241121-yzbreawpez
MD5

ce5512a94aa59985b3b8f371a0866da0
SHA1

0dfb6f37eb2eb1badb8ab9c0754de0874f4fcfd4
SHA256

049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309
SHA512

eae07e86ae5dfdd15cdf74dcd2a17502cb8e59fe51aa1d6f64c8a7a14fee8a435f9082a25c9e0566a47765d992037851bc929c5eb53ca80c461327d0a3c973d3
SSDEEP

192:ScIMmtPi95kG/bGv7m7sOVIOdBf0krFnuTE3dz5b:SPXIBGv7jOVjvlrFnuInb

Score

10^/10

discovery websettings

Static task

static1

Behavioral task

behavioral1

Sample

049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309.docx

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309.docx

Resource

win10v2004-20241007-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Rule

Microsoft Office WebSettings Relationship

C2

http://cml.lol/5x2klu

Targets

- Target
  
  049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309
- Size
  
  10KB
- MD5
  
  ce5512a94aa59985b3b8f371a0866da0
- SHA1
  
  0dfb6f37eb2eb1badb8ab9c0754de0874f4fcfd4
- SHA256
  
  049261b1ba10fc409cebee2220f6c16b66a24d45fdf51a8613c6be0870ff2309
- SHA512
  
  eae07e86ae5dfdd15cdf74dcd2a17502cb8e59fe51aa1d6f64c8a7a14fee8a435f9082a25c9e0566a47765d992037851bc929c5eb53ca80c461327d0a3c973d3
- SSDEEP
  
  192:ScIMmtPi95kG/bGv7m7sOVIOdBf0krFnuTE3dz5b:SPXIBGv7jOVjvlrFnuInb
Score

7^/10

discovery
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy