Analysis

  • max time kernel
    150s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:38

General

  • Target

    doc_pack-1929416459.xlsb

  • Size

    24KB

  • MD5

    c532262abc29894d61e2458370be0194

  • SHA1

    90dee2a871c243b760183b575b7b5a1aff4b0f23

  • SHA256

    db527caa021968d22981e0ea35dc6aa82ba1e399bd64593d4850bcc4787113cf

  • SHA512

    c7976903d5915044c915d53bb4afe7120b2a8534ff1db9ce131e2b9922ade962e07c392a2efb22b144c8a6bd4ec00d28dec09dbf37920819e3a5467761ef0fd8

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-1929416459.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:1056

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1964-0-0x000007FEF6930000-0x000007FEF6BAA000-memory.dmp

    Filesize

    2.5MB