General

  • Target

    60275f45d70742387bfab0313933fec34673d27de8c1be9baa442419a23b8a1a.doc

  • Size

    152KB

  • Sample

    200127-q7rn6bemf6

  • MD5

    683409ab5b35d7bada7d7d773693a25c

  • SHA1

    d12400e55c85630e2bed848bb9f363299b0b0ea5

  • SHA256

    60275f45d70742387bfab0313933fec34673d27de8c1be9baa442419a23b8a1a

  • SHA512

    f0eb4aa8915fee8ae71dc40cebf86cadf08c7c182e1ff6843d243622d1c7bc04811b5191ecdb0ae3e1d1e86858f84e1fa17bef87e906a11bc01d5158f845de6d

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://yochina.apps.zeroek.com/assets/GQK9Gly/

exe.dropper

http://www.bandarwinsbobet.com/wp-admin/7bw/

exe.dropper

http://test.pakspaservices.com/wp-content/Yi1j6O7/

exe.dropper

http://portal.meucompromisso.com/wp-admin/kQJ/

exe.dropper

https://wondersofgeorgia.com/wp-admin/jv7hvg/

Targets

    • Target

      60275f45d70742387bfab0313933fec34673d27de8c1be9baa442419a23b8a1a.doc

    • Size

      152KB

    • MD5

      683409ab5b35d7bada7d7d773693a25c

    • SHA1

      d12400e55c85630e2bed848bb9f363299b0b0ea5

    • SHA256

      60275f45d70742387bfab0313933fec34673d27de8c1be9baa442419a23b8a1a

    • SHA512

      f0eb4aa8915fee8ae71dc40cebf86cadf08c7c182e1ff6843d243622d1c7bc04811b5191ecdb0ae3e1d1e86858f84e1fa17bef87e906a11bc01d5158f845de6d

    Score
    10/10
    • Process spawned unexpected child process

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks