ioc[.]one - OSINT Cyber Threat Intelligence Database

How to Analyze Malicious Microsoft Office Files - Intezer

Tags

maec-delivery-vectors:

Watering Hole

attack-pattern:

Data Domains - T1583.001 Domains - T1584.001 Dynamic Data Exchange - T1559.002 Inter-Process Communication - T1559 Ip Addresses - T1590.005 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Visual Basic - T1059.005 Template Injection - T1221 Vba Stomping - T1564.007 Tool - T1588.002 Vulnerabilities - T1588.006 Dynamic Data Exchange - T1173 Office Application Startup - T1137

Show in Graph

Common Information

Type	Value
UUID	d1d9ef33-c52e-45b5-84ed-2fb272423054
Fingerprint	34022a006eaf0f03
Analysis status	DONE
Considered CTI value	-2
Text language
Published	Jan. 12, 2022, 3:04 p.m.
Added to db	Jan. 19, 2023, 12:13 a.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	How to Analyze Malicious Microsoft Office Files
Title	How to Analyze Malicious Microsoft Office Files - Intezer
Detected Hints/Tags/Attributes	72/2/10

Source URLs

	Redirection	Url
Details	Source	http://www.intezer.com/blog/malware-analysis/analyze-malicious-microsoft-office-files/

URL Provider

Details	Provider	Source level domain
Details	intezer.com	www.intezer.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	375		cve-2017-11882
Details	CVE	269		cve-2017-0199
Details	CVE	48		cve-2015-1641
Details	md5	2		167949ba90da85c8b56878d95be19c1a
Details	md5	2		8d1ce6280d2f66ff3e4fe1644bf24247
Details	MITRE ATT&CK Techniques	29		T1137
Details	MITRE ATT&CK Techniques	25		T1559
Details	MITRE ATT&CK Techniques	40		T1221
Details	Threat Actor Identifier - APT	783		APT28
Details	Threat Actor Identifier - FIN	377		FIN7