13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98 | Triage

Submit
Reports

Overview

overview

Static

static

8

13dd59cf08...98.doc

windows7-x64

13dd59cf08...98.doc

windows10-2004-x64

Sharing

General

Target

13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98
Size

128KB
Sample

241122-brlv3s1nbx
MD5

aac6f90d4b8c995ea356da61a64c7e73
SHA1

070252aee72f04f1db312a37a4a750ed9863833f
SHA256

13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98
SHA512

337ae4e3b73674ef4221bbca003168203a487d58b6a79d81b424bb0938c081678491f86575904e6b723f26d176266c843e8704dc2188e74fba622e15aa133bc6
SSDEEP

1536:l81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadiy03224HEXt1:l8GhDS0o9zTGOZD6EbzCdimu

Score

10^/10

discovery macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98.doc

Resource

win7-20241010-en

windows7-x64

10 signatures

60 seconds

Behavioral task

behavioral2

Sample

13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98.doc

Resource

win10v2004-20241007-en

windows10-2004-x64

9 signatures

60 seconds

Malware Config

Targets

- Target
  
  13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98
- Size
  
  128KB
- MD5
  
  aac6f90d4b8c995ea356da61a64c7e73
- SHA1
  
  070252aee72f04f1db312a37a4a750ed9863833f
- SHA256
  
  13dd59cf080fa9981fb9a28c390d3bbdaca4e672d656cc2f6993917ecd323d98
- SHA512
  
  337ae4e3b73674ef4221bbca003168203a487d58b6a79d81b424bb0938c081678491f86575904e6b723f26d176266c843e8704dc2188e74fba622e15aa133bc6
- SSDEEP
  
  1536:l81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadiy03224HEXt1:l8GhDS0o9zTGOZD6EbzCdimu
Score

10^/10

discovery
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy