Analysis

  • max time kernel
    119s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:39

General

  • Target

    doc_pack-1933776916.xlsb

  • Size

    24KB

  • MD5

    cd1d31f02de8ece16b605b1057ea5c96

  • SHA1

    b7bb41b04f85d15a0879cab7b80381b093684eb3

  • SHA256

    2f8e335b51180278ba1e8436ec535cad39b35089bc2f8520324d41b0a495c3f6

  • SHA512

    d681e1ce50c46c8c84324994c2607ad2826c301640bec0a02170ed0bb7f5effdb7bbd9d992c35cd94bd1ae2e456976f47ab387933f56118e201abe3da9518309

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-1933776916.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:536

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1304-0-0x000007FEF6010000-0x000007FEF628A000-memory.dmp

    Filesize

    2.5MB