General

  • Target

    PO.doc

  • Size

    19KB

  • Sample

    210928-lcgypabebp

  • MD5

    601260b52c23f2be80998a22b2fc77dd

  • SHA1

    e4fd634040abd4f6b58aa7efe8fb59f7e64a395f

  • SHA256

    2dfd64c86cfb81ed8a280b74e6e7b244a8a98d3788c8c552266ddd5327e4f055

  • SHA512

    d8beacb0e01df26d41812d4152ff8afe46c25e620d200af0e9d6a27b6f89cd4dc915d77ca2f4f3e04dc78ff43192a4d5b5e52674eef4a000a0cc35dc4ef0df22

Score
8/10

Malware Config

Targets

    • Target

      PO.doc

    • Size

      19KB

    • MD5

      601260b52c23f2be80998a22b2fc77dd

    • SHA1

      e4fd634040abd4f6b58aa7efe8fb59f7e64a395f

    • SHA256

      2dfd64c86cfb81ed8a280b74e6e7b244a8a98d3788c8c552266ddd5327e4f055

    • SHA512

      d8beacb0e01df26d41812d4152ff8afe46c25e620d200af0e9d6a27b6f89cd4dc915d77ca2f4f3e04dc78ff43192a4d5b5e52674eef4a000a0cc35dc4ef0df22

    Score
    8/10
    • Blocklisted process makes network request

MITRE ATT&CK Matrix ATT&CK v6

Execution

Exploitation for Client Execution

1
T1203

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks