83aaf79ba8cb78ba77a7ad2b96e276e1d7bc731d734987c8acdfa6db40eea318 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

invoicel_25336.xls

windows7_x64

6

invoicel_25336.xls

windows10_x64

6

Sharing

General

Target

invoicel_25336.xls
Size

166KB
Sample

200710-nmddkqtl5n
MD5

122e863c8d959fdb586a6a4ca09e6cb1
SHA1

ab5d42a9f39bfedf3e9f27972757dfe943b1893d
SHA256

83aaf79ba8cb78ba77a7ad2b96e276e1d7bc731d734987c8acdfa6db40eea318
SHA512

9e6915a0bb565f306904574d7177fa611372eb0ef04add6e4557ee64a6e8fc6539371abc803b28e8c7b8fa08bb7c1f47f24592c9495a1d556dc89065f17a0846

Score

8^/10

macro

Static task

static1

Behavioral task

behavioral1

Sample

invoicel_25336.xls

Resource

win7

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

invoicel_25336.xls

Resource

win10

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  invoicel_25336.xls
- Size
  
  166KB
- MD5
  
  122e863c8d959fdb586a6a4ca09e6cb1
- SHA1
  
  ab5d42a9f39bfedf3e9f27972757dfe943b1893d
- SHA256
  
  83aaf79ba8cb78ba77a7ad2b96e276e1d7bc731d734987c8acdfa6db40eea318
- SHA512
  
  9e6915a0bb565f306904574d7177fa611372eb0ef04add6e4557ee64a6e8fc6539371abc803b28e8c7b8fa08bb7c1f47f24592c9495a1d556dc89065f17a0846
Score

6^/10
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy