Overview

overview

8

Static

static

Rochelle_Eirena.xls

windows7_x64

6

Rochelle_Eirena.xls

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Rochelle_Eirena.xls

  • Size

    520KB

  • Sample

    200714-haxg8ypds2

  • MD5

    4fbb236d98363885d109cd868c0cc81f

  • SHA1

    cd18bf81926b371781d4da2bba83eb6bc0837950

  • SHA256

    993d3c6a5784db2f533d9146bb951916190a03ea2103b2ef6a8de49f2cb61694

  • SHA512

    d7837e113f3685aef97c17a733ceda29321e083b8288825898cacff3102ca5a35375d022031ce58d441d6e86e947a09be1740bcaf1090b616e59d9d1e942c31a

Score
8/10

Malware Config

Targets

    • Target

      Rochelle_Eirena.xls

    • Size

      520KB

    • MD5

      4fbb236d98363885d109cd868c0cc81f

    • SHA1

      cd18bf81926b371781d4da2bba83eb6bc0837950

    • SHA256

      993d3c6a5784db2f533d9146bb951916190a03ea2103b2ef6a8de49f2cb61694

    • SHA512

      d7837e113f3685aef97c17a733ceda29321e083b8288825898cacff3102ca5a35375d022031ce58d441d6e86e947a09be1740bcaf1090b616e59d9d1e942c31a

    Score
    8/10

    • Executes dropped EXE

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks