Analysis
-
max time kernel
135s -
max time network
133s -
platform
windows10_x64 -
resource
win10 -
submitted
14/07/2020, 06:43
General
-
Target
911cb9fd746ece672b220ed0d916a6f25396ed4f6ac6d703a81a0f0d4841caea.xls
-
Size
178KB
-
MD5
9ef2317df117717c6a2c38bf8f756685
-
SHA1
a5b42785846fe03005fc0ce65ea8e445aeb4fa4e
-
SHA256
911cb9fd746ece672b220ed0d916a6f25396ed4f6ac6d703a81a0f0d4841caea
-
SHA512
f564361bff740a7ca1d7920698f2e7381fa9f06da8170cf4452e96be47219d0bbbc1df660a437e254887eaadb5128831a11c631c70ead3e282e95be6377589df
Score
1/10
Malware Config
Signatures
-
Checks processor information in registry 2 TTPs 3 IoCs
Processor information is often read in order to detect sandboxing environments.
-
Enumerates system info in registry 2 TTPs 3 IoCs
-
Suspicious use of SetWindowsHookEx 13 IoCs
-
Suspicious behavior: AddClipboardFormatListener 1 IoCs
Processes
-
C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE"C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\911cb9fd746ece672b220ed0d916a6f25396ed4f6ac6d703a81a0f0d4841caea.xls"1⤵
- Checks processor information in registry
- Enumerates system info in registry
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: AddClipboardFormatListener