394c97cc9d567e556a357f129aea03f737cbd2a1761df32146ef69d93afc73dc | Triage

Submit
Reports

Overview

overview

8

Static

static

8

template[1].dotm

windows7-x64

7

template[1].dotm

windows10-2004-x64

7

Sharing

General

Target

template[1].doc
Size

59KB
Sample

220814-hbsr1sdfg8
MD5

8f21756219d4e736219011174eb0534b
SHA1

4429c35b62d55abe159e130c095fc988e640f3fd
SHA256

394c97cc9d567e556a357f129aea03f737cbd2a1761df32146ef69d93afc73dc
SHA512

315e36c7fb746ed22bac49c5121c448e2b5a53741e2467d4ecacda372c0d79da50cc0d1d2b4a68f425540e1c667558293862e54ea8f9fd537485d1c327c7d3e2

Score

8^/10

macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

template[1].dotm

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

template[1].dotm

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  template[1].doc
- Size
  
  59KB
- MD5
  
  8f21756219d4e736219011174eb0534b
- SHA1
  
  4429c35b62d55abe159e130c095fc988e640f3fd
- SHA256
  
  394c97cc9d567e556a357f129aea03f737cbd2a1761df32146ef69d93afc73dc
- SHA512
  
  315e36c7fb746ed22bac49c5121c448e2b5a53741e2467d4ecacda372c0d79da50cc0d1d2b4a68f425540e1c667558293862e54ea8f9fd537485d1c327c7d3e2
Score

7^/10
- Loads dropped DLL
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy