Analysis
-
max time kernel
149s -
max time network
139s -
platform
windows10_x64 -
resource
win10v200430 -
submitted
09/07/2020, 11:59
General
-
Target
74c6635afb5f71d4287d0a7d395fb520aa2bf2270db94fc5e803e36915adaec5.xls
-
Size
259KB
-
MD5
3ef913578008d513c043b43fbf7af2fe
-
SHA1
e5d257e81051c5a84436a362264a499a260deee0
-
SHA256
74c6635afb5f71d4287d0a7d395fb520aa2bf2270db94fc5e803e36915adaec5
-
SHA512
f6cf9d9c1c27f37f04e15c9391dfe8b1afd666f7531ef217d1f41515468121b12b5ca00f07c946a7ad5c7ba93f763341f155b49455525fdada6295f3edd05337
Score
1/10
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 13 IoCs
-
Suspicious behavior: AddClipboardFormatListener 1 IoCs
-
Checks processor information in registry 2 TTPs 3 IoCs
Processor information is often read in order to detect sandboxing environments.
-
Enumerates system info in registry 2 TTPs 3 IoCs
Processes
-
C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE"C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\74c6635afb5f71d4287d0a7d395fb520aa2bf2270db94fc5e803e36915adaec5.xls"1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: AddClipboardFormatListener
- Checks processor information in registry
- Enumerates system info in registry