Analysis

  • max time kernel
    116s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:12

General

  • Target

    doc_pack-1900789864.xlsb

  • Size

    24KB

  • MD5

    cd3c403556b59f53a19ff5282cf218bf

  • SHA1

    849435032a5da8627cc15d1822ecb4244d3edcb9

  • SHA256

    bce3433a164e827cb322c13f5f666b5b740dc8dec74a51cda3bade98b00aea4d

  • SHA512

    f38ddcbe708d8b296f2ce2c938fad237c5d8b5c9d22af29a5b30f531399bdd3b24a6af811eb5effd03f3489576a8a10b31eed6deedd35a358f6f71aa61c69882

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-1900789864.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:536

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1304-0-0x000007FEF72E0000-0x000007FEF755A000-memory.dmp

    Filesize

    2.5MB