General

  • Target

    Contract - Wipak Oy.xlsx

  • Size

    2.7MB

  • Sample

    220805-lgghqahgc6

  • MD5

    d0cd467a481799f5dc06a498e24ff4ad

  • SHA1

    da919b490b8192eab7c577b4a85337d09eb56a9e

  • SHA256

    831518fee7137eb607ad0fd8b629784dd692f981f6060465079945a13dba6c4c

  • SHA512

    deefc6c8b76de5f8cd1ed1f7541d136961d6f249a16abc4c6cac7114ac55facc3c0d3f5c5b581dabd18bb71468351bb28039d2ff533aaa634240e8587f0ac545

Score
8/10

Malware Config

Targets

    • Target

      Contract - Wipak Oy.xlsx

    • Size

      2.7MB

    • MD5

      d0cd467a481799f5dc06a498e24ff4ad

    • SHA1

      da919b490b8192eab7c577b4a85337d09eb56a9e

    • SHA256

      831518fee7137eb607ad0fd8b629784dd692f981f6060465079945a13dba6c4c

    • SHA512

      deefc6c8b76de5f8cd1ed1f7541d136961d6f249a16abc4c6cac7114ac55facc3c0d3f5c5b581dabd18bb71468351bb28039d2ff533aaa634240e8587f0ac545

    Score
    8/10
    • Blocklisted process makes network request

MITRE ATT&CK Matrix ATT&CK v6

Execution

Exploitation for Client Execution

1
T1203

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks