Analysis

  • max time kernel
    64s
  • max time network
    74s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    29-10-2020 03:38

General

  • Target

    doc_pack-194347709.xlsb

  • Size

    24KB

  • MD5

    9dcf5a2a66cff3b960e0037b85e2d0f4

  • SHA1

    341271677f3441d605e9c435f24ccc2e6ce3e5b6

  • SHA256

    8cf59bba7fd8f8f9558ace3429528d7dcc84a1f35da38481ee6525b8a8607e9b

  • SHA512

    7c06d15a1e1b391321859c56cccb62b7a9c80ad3092da0a1b979b991675f904fbaf342bca137863dbc2563a245c865d585462176019dd4425af4e08166ffdbec

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 1 IoCs
  • Modifies Internet Explorer settings 1 TTPs 9 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
    "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /dde C:\Users\Admin\AppData\Local\Temp\doc_pack-194347709.xlsb
    1⤵
    • Enumerates system info in registry
    • Modifies Internet Explorer settings
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:748

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2040-0-0x000007FEF7500000-0x000007FEF777A000-memory.dmp

    Filesize

    2.5MB