Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:41

General

  • Target

    doc_pack-1937804315.xlsb

  • Size

    24KB

  • MD5

    389db9c76bdb44e191c72db7872646e1

  • SHA1

    10f167ba81c1b3ccc223399fb5e618352cd13107

  • SHA256

    b332d4eb3ec0a053dee82bd0ec38fb085735571097fc2695e7bf97216aa80fd8

  • SHA512

    64f0d2664e454a8e14284d3ff10fd938a34884ef8e30a9f4884e98ae28683a53fb82ede07caea0a0613a587bb009bd80e8f197064f262a21f4d6215e6d947174

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-1937804315.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:1080

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1664-0-0x000007FEF7800000-0x000007FEF7A7A000-memory.dmp

    Filesize

    2.5MB