0370833b979658d5ad2c5a0bd27db32c181d3f7edd6eba3dbc43f6e95bbfc6f7 | Triage

Submit
Reports

Overview

overview

8

Static

static

5.xls

windows7_x64

6

5.xls

windows10_x64

8

Sharing

General

Target

5.xls
Size

529KB
Sample

200714-g7mzeybl9n
MD5

6bdd5e1682037bbb53bbd0469a9d8907
SHA1

f99743dfb05662d06cdd4091b44e8f0ae52cf19d
SHA256

0370833b979658d5ad2c5a0bd27db32c181d3f7edd6eba3dbc43f6e95bbfc6f7
SHA512

e5ea019e5332b9a7524036351d72bd2a9201f35265ba659dc168aca90079a9406560aac81365aa14bd2b272ffa0f661542ac9c9dd2c33558dd4055aabdc57f1d

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

5.xls

Resource

win7

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5.xls

Resource

win10v200430

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5.xls
- Size
  
  529KB
- MD5
  
  6bdd5e1682037bbb53bbd0469a9d8907
- SHA1
  
  f99743dfb05662d06cdd4091b44e8f0ae52cf19d
- SHA256
  
  0370833b979658d5ad2c5a0bd27db32c181d3f7edd6eba3dbc43f6e95bbfc6f7
- SHA512
  
  e5ea019e5332b9a7524036351d72bd2a9201f35265ba659dc168aca90079a9406560aac81365aa14bd2b272ffa0f661542ac9c9dd2c33558dd4055aabdc57f1d
Score

8^/10
- Executes dropped EXE
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy