Loffice - Analyzing malicious documents using WinDbg
Tags
attack-pattern: Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Tool - T1588.002 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 1ba3e2dd-0101-4ba2-9ce1-205f17be1a56
Fingerprint 32ca00470ba95744
Analysis status DONE
Considered CTI value 0
Text language
Published June 5, 2016, 4:18 p.m.
Added to db Oct. 22, 2023, 10:43 p.m.
Last updated Nov. 17, 2024, 6:31 p.m.
Headline tHEMbITS
Title Loffice - Analyzing malicious documents using WinDbg
Detected Hints/Tags/Attributes 25/1/5
Source URLs
Redirection Url
Details Source https://thembits.blogspot.com/2016/06/loffice-analyzing-malicious-documents.html
Details Source http://thembits.blogspot.com/2016/06/loffice-analyzing-malicious-documents.html
URL Provider
Details Provider Source level domain
Details blogspot.com thembits.blogspot.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 250 tHEMbITS https://thembits.blogspot.com/feeds/posts/default 2024-08-30 22:08
Details 498 tHEMbITS http://thembits.blogspot.com/feeds/posts/default 2024-08-31 04:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
httpobject.open
Details File 41 
msxml2.xml
Details File 156 
1.exe
Details File 146 
wininet.dll
Details Url 1 
http://evil.domain/1.exe