Analysis

  • max time kernel
    63s
  • max time network
    67s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:41

General

  • Target

    doc_pack-1961294949.xlsb

  • Size

    24KB

  • MD5

    e5b83850fe939e0f981c908de9a042d7

  • SHA1

    56eb9197d036fcd39785a935609c788b45340ccf

  • SHA256

    e28571b9f357304a5d5c29fbfa4937c0ce1224fdd33176a474bbd1dd2c14b394

  • SHA512

    91c89a14a2a76ccb33a977ecf954ff954c32265c779ee0e57f1dcc34e206502d4f9b43aa7ff2e46bc5dceeaaabacd8f3897849b34f4d62d21edba355ee3a9c80

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-1961294949.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:2036

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1108-0-0x000007FEF7E60000-0x000007FEF80DA000-memory.dmp

    Filesize

    2.5MB